last executing test programs:

12.501834427s ago: executing program 2 (id=989):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socket$inet(0x2, 0x4, 0x6) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) (async)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0) (async)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000181200", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = socket$inet6(0xa, 0x2, 0x0)
getsockopt$IP6T_SO_GET_REVISION_TARGET(r4, 0x29, 0x35, 0x0, &(0x7f0000000080)) (async, rerun: 32)
socket$netlink(0x10, 0x3, 0xa) (async, rerun: 32)
inotify_init()
write$9p(0xffffffffffffffff, &(0x7f0000001400), 0x0) (async)
syz_open_procfs(0x0, &(0x7f0000000040)='net/ip_tables_matches\x00') (async)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
getpeername$packet(0xffffffffffffffff, 0x0, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$IPT_SO_SET_REPLACE(r6, 0x4000000000000, 0x40, &(0x7f0000000380)=@raw={'raw\x00', 0x4001, 0x3, 0x228, 0x0, 0xb, 0x148, 0xe8, 0x148, 0x190, 0x240, 0x240, 0x190, 0x215, 0x3, 0x0, {[{{@ip={@local, @loopback, 0x0, 0x0, 'rose0\x00', 'veth0\x00'}, 0x0, 0xc0, 0xe8, 0x0, {0xff0f000000000000}, [@common=@unspec=@state={{0x28}}, @common=@unspec=@pkttype={{0x28}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffc}}, {{@uncond, 0xec010000, 0x70, 0xa8}, @common=@inet=@SET3={0x38}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x288) (async)
sendmsg$netlink(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="200000005e00250e00000000000000000c3156631a4c54e36cb4195cd26387ad"], 0x20}]}, 0x0) (async)
r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
r8 = dup2(0xffffffffffffffff, r7) (async, rerun: 64)
r9 = socket$inet6(0xa, 0x80002, 0x88) (rerun: 64)
bind$inet6(r9, &(0x7f0000000380)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c) (async)
setsockopt$SO_ATTACH_FILTER(r9, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x1, &(0x7f0000000080)=[{0x6}]}, 0x10)
setsockopt$SO_BINDTODEVICE(r9, 0x1, 0x19, 0x0, 0x0) (async, rerun: 32)
syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030486dd601b8b97004d88c19e9ace5ffb2e9fc603dd282100000002ff02000000000000000000000000000104004e20004db0"], 0x0) (async, rerun: 32)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001a40)={&(0x7f0000001a00)='mm_page_alloc\x00', r8}, 0x10) (async, rerun: 64)
r10 = syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x2) (rerun: 64)
dup(r10)

12.267307793s ago: executing program 2 (id=992):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000000)=0x6, 0xa)
bind$inet6(r0, &(0x7f0000f67fe4)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000003440), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x3a})
r1 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000180)=0x80000004, 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$nl_route(0x10, 0x3, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0)
r3 = syz_io_uring_setup(0x406e, &(0x7f0000000500)={0x0, 0x4, 0x2, 0x0, 0x221}, &(0x7f00000001c0)=<r4=>0x0, &(0x7f00000000c0)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x27})
io_uring_enter(r3, 0x567, 0x0, 0x0, 0x0, 0x0)
r6 = dup(r2)
close_range(r2, r2, 0x2)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
write$6lowpan_enable(r6, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x0, 0x0, 0x0, r6}, 0x0, &(0x7f00000001c0)=<r7=>0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000300)={@cgroup, 0x10, 0x0, 0x6, 0x0, 0x0, 0x0, &(0x7f0000000280)=[0x0, 0x0], &(0x7f00000002c0)=[0x0], &(0x7f0000000300), <r8=>0x0}, 0x40)
openat$cgroup(0xffffffffffffffff, &(0x7f00000003c0)='syz1\x00', 0x200002, 0x0)
r9 = syz_open_procfs(0x0, &(0x7f00000001c0)='environ\x00')
preadv(r9, &(0x7f0000000000)=[{&(0x7f0000001200)=""/4087, 0xff7}], 0x1, 0x800, 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000440)={@ifindex, 0xffffffffffffffff, 0x1a, 0x2008, 0xffffffffffffffff, @value=r9, @void, @void, @void, r8}, 0xfffffffffffffeee)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000080)={@map=r6, r6, 0x30, 0x4, 0x0, @void, @value=r6, @void, @void, r8}, 0x20)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000002c0))
syz_io_uring_submit(0x0, r7, 0x0)
r10 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r10, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="1400000028000bff7f000000000000000024fc60", 0x14}], 0x1}, 0x0)

11.670543805s ago: executing program 2 (id=997):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async)
sendmsg$NFNL_MSG_CTHELPER_GET(0xffffffffffffffff, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000680)=ANY=[@ANYBLOB="440000000109030000000000000000000000000030000866c252639ebe4c4cfd99c002002c0001801400030000000000000000000000ffffac1414bb14000400fe880000"], 0x44}}, 0x2) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
socket(0x0, 0x0, 0x0) (async)
unshare(0x0) (async)
unshare(0x8040080) (async)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r1, &(0x7f0000000440), 0x10)
listen(r1, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000003540)=ANY=[@ANYBLOB="3c00000010000104000000000000000000480000", @ANYRES32=r3, @ANYBLOB="0000000000000000180001"], 0x3c}}, 0x0) (async)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r4, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10) (async)
r5 = accept4$unix(r1, 0x0, 0x0, 0x0) (async)
timer_settime(0x0, 0x1, &(0x7f0000000140)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) (async)
timer_settime(0x0, 0x0, &(0x7f0000000640)={{}, {0x77359400}}, &(0x7f0000000380)) (async)
sendmmsg$inet(r4, &(0x7f0000007fc0)=[{{0x0, 0xfffffffffffffed0, &(0x7f00000000c0)=[{&(0x7f0000000480)="d14819af7e454983067b98101801d020cb551f6c977b5c3c20a330fa8fc679cd3d9619491ddcf7b4a21734db8f6f54ca6b4ee65dd04822dd5077567891e80f927bdf99c647729fff78d927f7aee60466ed2c203cc0de11a4970f863acca9229b65b6e1cae163c79de090ec4c4b09046812e6f96739e2a35c54b9d8e497e36a5ed6096ce10c16142718fa341ea0d7e275afc24b68843d"}, {&(0x7f0000000540)="5774999ca8c3bf22aa59ed7081224f92b871e30b3a5a812eb5dd156f3b9fa6b093a4146964703dd541f15311fb9807041a17c965989e4c8b49548266de2509d984dac20e3a2c2c516b8f745091fcdeb499447deb13549385f0ab71f14f405413939eec05f0df06230bb52e5388816eb68c5a94d91f11910f059319d9758d958a9ae6428fc61b3549a3c25c954aeb821507cb92d2b2dac422530b1567c12c67"}, {&(0x7f00000007c0)="7b05134caa4c4f4e312bf611a671cdaead3d7e84e1a997dc57038477676fe0e3e04156fbc225e6ff6cced57c5b0d5bd6d6e72ff3caed8389895ce8974b551f15ffb1bb79e994f5e7bfc6ff5bc18dbeb28f9d257dd3d8dbd4d0bc01363c8ad63f4d9733d7ee8a36350da8ccea35e950a4b668953b6f466381582c01a7dd5f154b48003729cb0d9068efc88c9459d50875a004cff8aa49032575899745116f8944a3be626ffca3f01bfe31ad55cc20bf65c009cfa52e0f1bda99f86cb42584c4592201387c5cb9c803b68ac0301233dea866772ddb61b5"}, {&(0x7f00000009c0)="bb4e4886f5e6b45e4c3429191934357ddf1c33cda5566c54932e43bb73933ffa91bbd187bf1c222767c6858cd166dcacc4a6e810e6146360ba1dffde4a4815de86f1679f9d1a128e2415552ac2475b9d4c077de207f1fbe21277c717455396e72b129cfe3e56669c60fd316106cda666539c390f2cfaa56e0585e4377a52b807e9ddace81705509a9f30a15c6d4451ca35ce9f23476fbb790f6482852651fd20040fc7f7141f4d64f9bb241c4ed804fbf2571044e41fcae137c9ab60544d694a10c474c94b9225e14e31b9a0590b62a601172a"}], 0x0, 0xfffffffffffffffc}}], 0x1, 0x0)
recvmmsg(r5, &(0x7f0000001680)=[{{0x0, 0x0, &(0x7f0000003380)=[{&(0x7f0000000140)=""/120, 0x78}], 0x1}}], 0x1, 0x0, 0x0)
r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000002f40), 0xfea7) (async)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r7, 0x0)
getsockopt(r6, 0xff, 0x1, 0x0, &(0x7f0000000040)) (async)
r8 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x4) (async)
unshare(0x6a040000)
ioctl$SNDRV_CTL_IOCTL_ELEM_REMOVE(r8, 0xc0405519, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, '\x00', 0x100})

11.526990798s ago: executing program 2 (id=998):
socket$inet_udp(0x2, 0x2, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f00000004c0), 0x40081, 0x0)
ioctl$SNDCTL_DSP_GETTRIGGER(r0, 0x80045010, &(0x7f0000000500))
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000500)={0xa, 0x2, 0x0, @empty}, 0x1c)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba7d82000000000000000027d1287cff00"})
open(0x0, 0x0, 0x0)
r3 = syz_open_pts(r2, 0x0)
r4 = dup(r3)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f00000000c0)=0x3)
dup3(r2, r4, 0x0)
dup3(r3, r2, 0x0)
ioctl$TIOCGPGRP(r2, 0x540f, &(0x7f0000000080)=<r5=>0x0)
r6 = getpid()
sched_setscheduler(r6, 0x2, 0x0)
setpgid(r5, r6)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r7 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000840), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r7, 0x40047438, &(0x7f0000000180)=""/246)
syz_usb_connect(0x0, 0x24, &(0x7f0000000200)=ANY=[@ANYBLOB="120100002ec6601037210100352a010203010902120001000000000904"], 0x0)
syz_open_procfs(0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r8 = syz_open_dev$video4linux(&(0x7f0000000100), 0x5, 0x410502)
ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(r8, 0xc040564a, &(0x7f0000000040)={0x0, 0x0, 0x3001})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$TIOCVHANGUP(r3, 0x5437, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
epoll_create1(0x0)

8.280306647s ago: executing program 2 (id=1019):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
recvmmsg(r0, &(0x7f0000001e80)=[{{0x0, 0x0, 0x0}, 0xe}, {{0x0, 0x0, &(0x7f0000000680)}, 0x9}, {{&(0x7f0000000240)=@rc={0x1f, @none}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000380)=""/10, 0xa}, {&(0x7f0000000480)=""/112, 0x70}, {&(0x7f00000005c0)=""/168, 0xa8}, {&(0x7f0000000680)=""/240, 0xf0}, {&(0x7f0000000780)=""/226, 0xe2}, {&(0x7f0000000880)=""/158, 0x9e}], 0x6, &(0x7f0000000940)=""/9, 0x9}, 0xad}, {{0x0, 0x0, 0x0}, 0x1}], 0x4, 0x0, 0x0)

8.279449771s ago: executing program 2 (id=1020):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r0}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$xdp(0x2c, 0x3, 0x0)
sendmsg$inet(r1, &(0x7f0000001640)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000800)}, 0x4c8c1)
r2 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r2, &(0x7f0000000f80)=[{{&(0x7f0000000040)={0xa, 0x4e23, 0x1, @dev={0xfe, 0x80, '\x00', 0x32}, 0x2}, 0x1c, &(0x7f00000000c0)=[{&(0x7f0000000080)="18e9c450bb521682f7c75fce00c5d4b283d0d422f0", 0xffffff84}], 0x1, &(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], 0x48}}, {{&(0x7f00000001c0)={0xa, 0x4e24, 0x3ff, @private1={0xfc, 0x1, '\x00', 0x1}, 0x8}, 0x1c, &(0x7f0000000680)=[{&(0x7f0000000200)="946e789b592cdba9a6e26002ac9fc2439a6033412e4b1b081a358ee62c709a6cce8fad246492c09172", 0x29}, {&(0x7f0000000240)="489b47b6a8b1c8b64599f5e19839c28bcd3c8324cce5ac39b464beb463e142edbdecca84e1020e198676b876dcda3a2e1383b23fb36959bb6aa17c51d149d6161dc0b3db3aac43390acb69910386e252563cc75f9a154cd461ab69fc3dbac9409aec4cdeb28a4eddbb4ffc531afb4bebfbb0d1bcaac7af01fb548cb2b925be6ed08d5308c4a37ed70e078dd95acebba6b7f11200d629508984646b917f670b6f478cba615ca41c8e3f81bc6d7a0f87c065efc9a65988a639347087d535e03bc156feafdf0ed142d80dcdb1d9f74554e5c0da657feba983e7104f5715520f0ff80aa63a000000", 0xe6}, {&(0x7f0000000340)="3d2d1a11d05c7ce2f384fd1648a67260201fe9818fced17049518deb4e33fd748a28b59f89c02431b8701c333796e3399ff701157c4e69b90fe946e99bedbb83da62d825529ef444d0f0171ca992bcd4ed37c76a78fc2c62c006a5498fc070a856a029dad3505ca7251c82cd7f145638f7d99318b8bb3ca5a37e2b4b5fb41d166a5986ce1d7c", 0xffffffffffffff98}, {&(0x7f0000000400)="fb19420d69ab940dcd0db35a51d5a4576cf025d30fa018dd92b287c8033d67c1070418fcb46782d1b4", 0x29}, {&(0x7f0000000440)="c23645d56c034145f0113958131c985a865667e95ea60dad97eb630ae77c7ab330163c4275c0fc3d6b031cf39535c9ef03f2c3f8d2454ae00305662f856aabe3cac2bc951038d65d5c474b7883ade501dbe5273100ecaeb7bfd71c451dd268d9adec0c2dad5c2117c4af738a2ac55377e6f570edfd2fbb8319f3c8913196e1380f658cc480c5c180cc18c6d3df77ae3a4fa7bd46387db5623647e85f8409bb86544a9306138a7850eac107f0f552fcf95f289dfd2dd534f6b3240368e713a513b999f8eedcc533953659ef2ed872cddb448979", 0xd3}, {&(0x7f0000000540)="11f8986981d51fbd67110a3aa9a7aedd1b5126ef214d84a9e7ee896459569620597e8f7942952f64fc5dde21fd1b9d41b15c35bf32ec62b7aa1d2618720c3506188d1951bca35550d7629a", 0x4b}, {&(0x7f00000005c0)="c811305c8b533b5f5d0278c59f2cc70dff2087ab3e6658a8a64f5b875ed47f160097e8c9b8110df408e038678982b4ce95e76127e6e0abb60a0314f0712371e1925c90cb45ff58d9b398e1f09912dbd6d306e4c851f820fa605fa68f393df320cd0c00fe5cf6406b9fff47ba2f54ba72855b2a406c759caee32fcec38d5eb7b551dfb73346bd84157995da1802363e18032ad31ec24be226d977e2cacbcf71ee8a182368f427af2c1d879c6538eb51690b10fdc9", 0xb4}], 0x7, &(0x7f0000000c00)=ANY=[@ANYBLOB="e0000000000000002900000078925c217249bae90000000005b41b43e4ae450f05054e0a99bfcb86ae0dfbdd5915ee22e31aec2460fbe0b019ef37cfe2be09374dba8646199d6ac1c5b26eb60c807a70655aeacbbbf1388066cdab30bc1629236d531f774a3ece0b1e9a072060086c105dc99b438334fd24f4974c5744ea5b2d175fc4c596871a19939d303ae3c11843b3fa9dcf5721d1d72c52391f39bed3a25e9b47d90dd087a00a28b7a8093f552d4b1206d6555196d0434fcb6decb530294faa81fc35c66518ec0404c325c6d50105000000000001020000050201010401f7"], 0xe0}}, {{&(0x7f0000000700)={0xa, 0x4e24, 0x8, @empty, 0xcb}, 0x0, &(0x7f0000000e00)=[{&(0x7f0000000880)="c227b1c2e14f8ca485120440036b12c241b0547f4f493d495bd5d97c503b74df1ac5af641a30b8486f8b0d0d82676b5ebb121094982178357b7573e7ffae1b2fca7dbd56ae0a368f213010c962a06307b2410e81e4ca5f72bd90556150edb1849f34a65ae8c7c15c4ffd5fac8c0263b9a2bd756ecaa05ee62baed34bb357c8c9b6a19443eda1cc5aec6358705749f6518e20214438267f82162ca8b0078918c7f7689695e4"}, {&(0x7f0000000940)="0cf3f5a2b09da1793e01f03cc6117597dd566c516bf21b5d12910f8844105078df25597781774c99854006a79cba2761c76129a0c67fad3e61bd00459cee228bbf185461e1c4574ca9f0712992a2dbdacea265aa56c5eeabf38392e2124d94ab9a7e18fc974af7bc0bf946d2f0f080fc07a2c9a83ac16a45d7034f0ba08038889cc6edb19d3c1dae87af676e2473502c2e7b"}, {&(0x7f0000000d00)="58d7250093a16689f75cfe99a0629d1af46b77260d5cb1cc713d57052baa114a27f84634ebe09552af5a6aed060e2a01aa7a10f18e6984407fbf21edf3b3b9b1e9c7f4e7e212d1b247c7608b56a4c2f9b39149495c542c4d28e1e22bf19c9cdd5e4b78cbddcd7c6d0e8abea36f8530837fd8c50db91453e1ed9bd72df2ad8105ef8a4bb87eb2fb8422123ce1b0d30fed407d5707bf1a01237447bdd473e4c3dfccfffa1286162d37eb9ca16446a6d2510357be0ba2405b70be497bb1e43ecdf17f5f638cb9"}, {&(0x7f0000001680)="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"}, {&(0x7f0000000a00)="d036c7c7037390e068644e567d81d02b48f8f216e86f85f12ce736e49db0c1202553e17cfad24c5cd557ec8091ba7f60aa6426b299e059e9d8d1ad19ce8b2bd99f7bff64c29f9829f82263b870a20cfb336ace673d0d8848e13af29f836f2862d690726623a89ba36be14de1ff2c323a729b498bb100f0e6279f651b48b5bc9435605b00796cb1ca126c507fdd438ac2e82439b2eca01f50"}, {&(0x7f0000000740)="28ea3436a65434a0d1c6f8af42aadc06ec1b8f683ac54393557b319302cb5657"}], 0x0, &(0x7f0000001040)=ANY=[@ANYBLOB="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"/312]}}], 0x2, 0x40)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000240)=@bpf_lsm={0x18, 0x6, &(0x7f0000000180)=ANY=[@ANYBLOB="8510000004000000dd000000000000001800000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f0000000000)=@filter={'filter\x00', 0x42, 0x4, 0x260, 0xffffffff, 0x98, 0x130, 0x130, 0xffffffff, 0xffffffff, 0x1c8, 0x1c8, 0x1c8, 0xffffffff, 0x4, 0x0, {[{{@ip={@local, @loopback, 0x0, 0x0, 'veth0_to_bridge\x00', 'veth1_to_bond\x00', {}, {}, 0x6}, 0x0, 0x70, 0x98, 0x0, {0x100000000000000}}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x7}}}, {{@ip={@broadcast, @local, 0x0, 0x0, 'veth1_to_bond\x00', 'gre0\x00'}, 0x0, 0x70, 0x98}, @REJECT={0x28}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@inet=@SET1={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2c0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
socket$nl_rdma(0x10, 0x3, 0x14)
write(r5, &(0x7f0000000000)="0a000000010001", 0x7)
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000200), 0x4)
r6 = socket$inet(0x2, 0x80001, 0x84)
r7 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r6, 0x0)
sendmsg$IPSET_CMD_SAVE(0xffffffffffffffff, &(0x7f0000009c40)={0x0, 0x0, &(0x7f0000009c00)={&(0x7f0000009c80)=ANY=[], 0x68}, 0x1, 0x0, 0x0, 0x80}, 0x24000)
r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r8, 0x400448ca, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpu.stat\x00', 0x26e1, 0x0)
close(r9)
socket$nl_generic(0x10, 0x3, 0x10)

5.80090599s ago: executing program 0 (id=1032):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='fdinfo\x00')
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10)
bind$inet6(r1, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
sendto$inet6(r1, &(0x7f0000847fff)='X', 0x1, 0x50, &(0x7f000005ffe4)={0xa, 0x4e23, 0x2, @loopback, 0xfffffffd}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000a00)={0x0, @in6={{0xa, 0x4e23, 0x0, @loopback}}, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x9c)
getdents(r0, 0xffffffffffffffff, 0x18)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
connect(r3, &(0x7f0000000140)=@rxrpc=@in6={0x21, 0x2, 0x2, 0x1c, {0xa, 0x4e21, 0x4, @mcast2, 0x5}}, 0x80)
sendmsg$nl_route_sched(r2, &(0x7f0000007940)={0x0, 0x0, &(0x7f0000007900)={&(0x7f0000000380)=@newtaction={0x534, 0x30, 0x216822a75a8bdd29, 0x0, 0x0, {}, [{0x520, 0x1, [@m_skbmod={0x1c4, 0x16, 0x0, 0x0, {{0xb}, {0xc8, 0x2, 0x0, 0x1, [@TCA_SKBMOD_ETYPE={0x6, 0x5, 0x7}, @TCA_SKBMOD_PARMS={0x24, 0x2, {{0x5, 0xffff6eb2, 0x1, 0x401, 0xffffffff}, 0x4}}, @TCA_SKBMOD_SMAC={0xa, 0x4, @remote}, @TCA_SKBMOD_DMAC={0xa, 0x3, @local}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0x5bf1}, @TCA_SKBMOD_DMAC={0xa, 0x3, @random="8079efadb54c"}, @TCA_SKBMOD_PARMS={0x24, 0x2, {{0x20, 0x5, 0xffffffffffffffff, 0x4}, 0xa}}, @TCA_SKBMOD_PARMS={0x24, 0x2, {{0x0, 0x2, 0x8, 0x2, 0x401}, 0x5}}, @TCA_SKBMOD_PARMS={0x24, 0x2, {{0x1, 0x9, 0x3, 0x7, 0xfff}, 0xb}}]}, {0xd2, 0x6, "3d211cb90cb28da7fcdefeba983fbac9bf797620fe31063b628acf6849f45ac3096e0d8ab3a70385ffe345f688da167c5438410758fef3ff174fa2d961edd7c809179b7d8236ceb2f68b6983b74286d63614aea97eb03153f3a8254dea1d24d86bad2c8dc97f239ee2bc70f24015f029d186c7ed0651993add175b3f04ad62df14f1c23f35934e43e418ef20699f0dc5384f6b374d8f60d9bb78d41fb5724579eb9623e0a5676beeeb1e25097ad2f8903c8d4e720566e0234aeb7c5f5bed492fad6e8cb567114db7acea136d931e"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}, @m_ct={0x11c, 0x1, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x400}}]}, {0xda, 0x6, "de97d6ff0bd6716472d6c90a63babb172661a650691de94e92d039178b1c2612dc84a0cf86e527a2861b149b83acc44460f857cabe50c653c3792ce2d27198ce0555ea8c4392dd6fc25857f7f370b71bdc1d0a1feb598f5aac25b87c3dea15cc2d9b5b383a2560c5d555ee32401b0a434ff5f80b4fc882016d59b136c4b8e90985fa7fe0633974d60de8411cd60d00f0d6f63827cb0c7d46ab06e68ace3137ad09a900846cb060c8dc2bcf4aa02475cafbef05c621108809fdc1af88b70be9faf0cf9eee81629a51cf6c6127519edc03f2365b85ef4c"}, {0xc}, {0xc}}}, @m_gact={0x174, 0x13, 0x0, 0x0, {{0x9}, {0x4c, 0x2, 0x0, 0x1, [@TCA_GACT_PROB={0xc, 0x3, {0x2, 0xea3, 0x3}}, @TCA_GACT_PROB={0xc, 0x3, {0x1, 0x1d28, 0x20000006}}, @TCA_GACT_PARMS={0x18, 0x2, {0xb66, 0xb3, 0x5, 0x34e, 0xffff}}, @TCA_GACT_PARMS={0x18, 0x2, {0x7ff, 0x80, 0x0, 0x9, 0x100000e0}}]}, {0xff, 0x6, "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"}, {0xc}, {0xc, 0x8, {0x2, 0x1}}}}, @m_vlan={0xc8, 0x1d, 0x0, 0x0, {{0x9}, {0xc, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_ID={0x6, 0x3, 0x1d9}]}, {0x93, 0x6, "8e983055f8de0f026210e374d54ebc293f5c8950469aa3340aa193444e16d11e50c68c02e50135f84792ec681d0b374b19e954233d6d3d51afcf1d7568897102ac00381211603edc46fce0d914a6f892c707b7639fe6a1a1961e943b80a609b26ce19b6155482ee2717ab57521c2e2a1ae346142f0653945e34a084b905a70ebed3af0c4a2ac08a2450db53c7b1a6e"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x534}}, 0x0)

5.800370029s ago: executing program 0 (id=1033):
r0 = socket(0x1d, 0x2, 0x6)
getsockopt$nfc_llcp(r0, 0x6a, 0x1, 0x0, 0x20000071)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000000040)=ANY=[@ANYRES8=0x0, @ANYRES64=0x0, @ANYRESHEX=r0], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000200)=ANY=[@ANYRES32=r1, @ANYRES32=r1, @ANYBLOB='/\x00\x00\x00', @ANYRES32, @ANYBLOB="6827d82f", @ANYRES64=0x0], 0x20)
r2 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f0000000180)={0xffffff}, 0x10)
write(r2, &(0x7f0000000000)="240000001a005f0214f9f407000904001f000000fe0000000000000008000f00fd000000", 0x24)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
listen(r3, 0x0)
accept$ax25(r3, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f0000000000)={'bond0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], 0x0, 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = syz_open_pts(0xffffffffffffffff, 0x440000)
r5 = openat$mixer(0xffffffffffffff9c, &(0x7f00000016c0), 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000fc0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$inet(r6, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001400), 0x0, &(0x7f0000001480)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @private, @multicast1}}}], 0x20}, 0x0)
recvmsg$unix(r7, &(0x7f0000001140)={0x0, 0x0, &(0x7f0000001040)=[{&(0x7f00000015c0)=""/4096, 0x7ffff000}], 0x1, 0x0, 0x2}, 0x40000100)
recvmsg$unix(r7, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x30}, 0x181)
ioctl$SOUND_MIXER_READ_VOLUME(r5, 0xa0044d03, &(0x7f0000000080))
accept$alg(r0, 0x0, 0x0)
ioctl$VT_RELDISP(r4, 0x5605)

4.887146275s ago: executing program 0 (id=1040):
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='io\x00')
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0xcb)
bind$ax25(r1, &(0x7f0000000000)={{0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}}, [@null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @default, @bcast]}, 0x10)
openat$cgroup(0xffffffffffffffff, &(0x7f0000000080)='syz1\x00', 0x200002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='sched_switch\x00', 0xffffffffffffffff, 0x0, 0x7d}, 0x18)
recvfrom$inet_nvme(r0, &(0x7f00000003c0)=""/4096, 0x1000, 0x100, &(0x7f00000013c0)=@llc={0x1a, 0x7, 0x64, 0x10, 0xa, 0x3, @broadcast}, 0x80)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r5 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r6 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$UI_DEV_CREATE(r6, 0x4008556c)
ioctl$TIOCL_GETMOUSEREPORTING(r5, 0x5412, &(0x7f00000000c0)=0x13)
ioctl$TCXONC(r5, 0x540a, 0x2)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
socket$kcm(0x2, 0xa, 0x2)
write$tun(0xffffffffffffffff, &(0x7f00000004c0)={@val={0x4, 0x74}, @void, @eth={@broadcast, @broadcast, @val, {@ipv6={0x86dd, @udp={0x0, 0x6, "953e3e", 0x48, 0x11, 0x0, @empty, @private1, {[], {0x3000, 0x0, 0x48, 0x0, @wg=@cookie={0x3, 0x0, "b1999aa9423b268179eefdf90af2d0830911d82922987142", "2e06c3896092ad1ba7a53ead892b29c7fe864884dc26055074b851cad1a15ec6"}}}}}}}}, 0x8a)

3.898120501s ago: executing program 0 (id=1045):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @veth={{0x9}, {0x4, 0x2, 0x0, 0x1, @void}}}, @IFLA_ADDRESS={0xa, 0x1, @local}]}, 0x40}}, 0x0)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, 0x0, 0x20000000)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(0xffffffffffffffff, 0x0, 0x0)
syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000340)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7", @ANYRESOCT], 0x0)
r2 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='auxv\x00')
mount$9p_fd(0x0, &(0x7f0000000180)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
pipe(0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xf, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_DELETE_ELEM(0x3, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{0x1}, 0x0, 0x0}, 0x1c)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000001800000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000009800000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
clock_adjtime(0x0, &(0x7f0000000040)={0x7, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x8, 0x200, 0xfffffffe, 0x0, 0x0, 0x1, 0x0, 0x0, 0xfffffffffffffffc, 0x6, 0x0, 0x8000000000000, 0x0, 0x0, 0x40})
mount(&(0x7f0000000200)=@sr0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)='gfs2\x00', 0x800000, &(0x7f0000000400)='9p\x00')
syslog(0x3, &(0x7f00000004c0)=""/194, 0xc2)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000640)={0xffffffffffffffff, 0x20, &(0x7f0000000600)={&(0x7f0000000580)=""/100, 0x64, 0x0, 0x0}}, 0x10)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000001c0)={0x38, 0x1403, 0x1, 0x0, 0x0, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'vcan0\x00'}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)

3.673320125s ago: executing program 1 (id=1047):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
recvmmsg(r0, &(0x7f0000001e80)=[{{0x0, 0x0, 0x0}, 0xe}, {{0x0, 0x0, &(0x7f0000000680)}, 0x9}, {{&(0x7f0000000240)=@rc={0x1f, @none}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000380)=""/10, 0xa}, {&(0x7f0000000480)=""/112, 0x70}, {&(0x7f00000005c0)=""/168, 0xa8}, {&(0x7f0000000680)=""/240, 0xf0}, {&(0x7f0000000780)=""/226, 0xe2}, {&(0x7f0000000880)=""/158, 0x9e}], 0x6, &(0x7f0000000940)=""/9, 0x9}, 0xad}, {{0x0, 0x0, &(0x7f0000001e00)}, 0x1}], 0x4, 0x0, 0x0)

3.666324553s ago: executing program 1 (id=1054):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
ioctl$SOUND_MIXER_READ_DEVMASK(r0, 0x80044dfe, &(0x7f0000000280))
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000200)={'netdevsim0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000000)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x2}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x8}, @TCA_RATE={0x6}]}, 0x48}}, 0x0)
dup(r1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000002000000b7080000000000007b8af8ff00000000b7080000000200007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000cfa2c312ad939821080000001823000027167318b8bac9915c0bb5965fc5b15372942b3e1ba7f549ff2af86fd11430f0800bb0376c56f9adba2838ac6f7e9bc20da5279d0be9c042", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000a50000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000016c0)=[0x1], 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
kcmp(0x0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee3, 0x20010, r3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})

2.736515038s ago: executing program 1 (id=1050):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1c, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18080000968e2ebcca8d00000000000000000000000018"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @void, @value}, 0x94)
r1 = socket$kcm(0x10, 0x2, 0x0)
ioctl$FS_IOC_FIEMAP(r1, 0xc020660b, &(0x7f0000000100)={0x3, 0xfffffffffffffffa, 0x2, 0xfffffff7, 0x1, [{0x0, 0x100, 0xffffffff, '\x00', 0x400}]})
write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1c0000001a00910c07a551559a257aac81"], 0xfe33)
io_uring_setup(0x1b94, &(0x7f0000000000))
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
connect$bt_l2cap(r2, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
getsockopt$bt_BT_CHANNEL_POLICY(r2, 0x112, 0xe, 0x0, &(0x7f00000000c0))
r3 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000080), 0x408000, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000180)={[{0x2b, 'freezer'}, {0x2d, 'pids'}, {0x2b, 'cpuacct'}, {0x2b, 'pids'}, {0x2d, 'net_prio'}, {0x2b, 'cpu'}]}, 0x2d)
r4 = syz_open_dev$sndctrl(&(0x7f00000000c0), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r4, 0xc1105511, &(0x7f0000000000)={0xb, 0x0, 0x0, 0x0, 'syz1\x00'})
setsockopt(r0, 0x84, 0x81, &(0x7f00000002c0)="1a00000019000000", 0x8)
setsockopt$inet_sctp6_SCTP_HMAC_IDENT(r0, 0x84, 0x16, 0x0, 0x0)

2.736068954s ago: executing program 3 (id=1051):
socket$nl_generic(0x10, 0x3, 0x10) (async)
keyctl$dh_compute(0x17, &(0x7f0000000040), &(0x7f0000000400)=""/128, 0x80, 0x0) (async)
openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x103902, 0x0) (async)
r0 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(aes)\x00'}, 0x58) (async)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10)
r2 = accept4(r1, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched_retired(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0, 0xfe71}}, 0x0) (async)
recvmmsg(r2, &(0x7f0000000800)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000280)=""/201, 0xc9}], 0x1}}], 0x1, 0x0, 0x0)
mknodat$loop(r0, &(0x7f0000001600)='./file1\x00', 0x0, 0x0) (async)
io_submit(0x0, 0x1, &(0x7f00000006c0)=[0x0])
syz_open_procfs(0x0, &(0x7f0000000100)='fd/3\x00')
io_submit(0x0, 0x1, &(0x7f0000000140)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}])
dup(0xffffffffffffffff) (async)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000007c0)=@newtaction={0x50, 0x30, 0x10b, 0x0, 0x0, {}, [{0x3c, 0x1, [@m_ife={0x38, 0x5, 0x0, 0x0, {{0x8}, {0x10, 0x2, 0x0, 0x1, [@TCA_IFE_SMAC={0xa, 0x4, @random="7436ba6800"}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc}}}]}]}, 0x50}}, 0x0) (async)
r4 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000340), 0x900, 0x0)
connect$unix(r4, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
close(r5) (async)
r6 = socket$nl_route(0x10, 0x3, 0x0) (async)
r7 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r7, 0x2285, &(0x7f00000005c0)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x3, 0x0}, &(0x7f0000000240)="128d83cda0b2", 0x0, 0x0, 0x0, 0x0, 0x0})
sendmsg$nl_route(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)=ANY=[@ANYBLOB="1b0000004a00010000000000000000000a000000", @ANYRES32=0x0, @ANYBLOB="0000feffffff0100fe800000000000000000e600ab72bf3437a07600aa0000"], 0x30}}, 0x0)
r8 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r8, 0x0) (async)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000002c0)=[@in6={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}]}, &(0x7f0000000200)=0x10) (async)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x71, &(0x7f0000000000)=@assoc_value={<r9=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r5, 0x84, 0x78, &(0x7f00000000c0)=r9, 0x4)

2.63584891s ago: executing program 3 (id=1052):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d66736361636865"])
chdir(&(0x7f0000000280)='./file0\x00')
r0 = creat(&(0x7f0000000300)='./bus\x00', 0x0)
io_setup(0x400, &(0x7f0000000040)=<r1=>0x0)
fcntl$setstatus(r0, 0x4, 0x6800)
io_submit(r1, 0x1, &(0x7f0000000540)=[&(0x7f0000002e80)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000002740)='B', 0x1}])
pipe(&(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
vmsplice(r3, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1)
close(r3)
r4 = socket$inet(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'bond_slave_1\x00', <r5=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="4400000010000100039a", @ANYRES32=r5, @ANYBLOB="000020000008000024001200140001006272696467655f736c617665800000000c0005"], 0x3}}, 0x0)
rename(&(0x7f0000000200)='./bus\x00', &(0x7f0000000380)='./file0\x00')
splice(r2, 0x0, r3, 0x0, 0x10500, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000640)=@newtaction={0x48, 0x30, 0x1, 0x0, 0x0, {}, [{0x34, 0x1, [@m_police={0x30, 0x1, 0x0, 0x0, {{0xb}, {0x4, 0x2, 0x0, 0x1, [[]]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x48}}, 0x0)
r6 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100), 0x200000, 0x0)
sendmsg$DEVLINK_CMD_SB_OCC_SNAPSHOT(r6, &(0x7f0000000580)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000500)={&(0x7f00000003c0)={0x84, 0x0, 0x2, 0x70bd25, 0x25dfdbfd, {}, [{@pci={{0x8}, {0x11}}, {0x8}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x7}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x9}}]}, 0x84}, 0x1, 0x0, 0x0, 0x44}, 0x20000000)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFNL_MSG_ACCT_GET(r6, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, 0x1, 0x7, 0x101, 0x0, 0x0, {0x1}, [@NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x8}, @NFACCT_FLAGS={0x8}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0xffff}]}, 0x34}, 0x1, 0x0, 0x0, 0x20024801}, 0x10)
r7 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IMADDTIMER(r7, 0x80044940, &(0x7f0000000080)=0x14)
r8 = socket$phonet_pipe(0x23, 0x5, 0x2)
openat$userio(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0)
ioctl$IMADDTIMER(r6, 0x80044940, &(0x7f0000000040)=0x14)
setsockopt$PNPIPE_ENCAP(r8, 0x113, 0x1, &(0x7f0000000140)=0x1, 0x4)
dup3(r8, r7, 0x0)

2.379682251s ago: executing program 3 (id=1053):
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='io\x00')
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0xcb)
bind$ax25(r1, &(0x7f0000000000)={{0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}}, [@null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @default, @bcast]}, 0x10)
openat$cgroup(0xffffffffffffffff, &(0x7f0000000080)='syz1\x00', 0x200002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='sched_switch\x00', 0xffffffffffffffff, 0x0, 0x7d}, 0x18)
recvfrom$inet_nvme(r0, &(0x7f00000003c0)=""/4096, 0x1000, 0x100, &(0x7f00000013c0)=@llc={0x1a, 0x7, 0x64, 0x10, 0xa, 0x3, @broadcast}, 0x80)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r5 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r6 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$UI_DEV_CREATE(r6, 0x4008556c)
ioctl$TIOCL_GETMOUSEREPORTING(r5, 0x5412, &(0x7f00000000c0)=0x13)
ioctl$TCXONC(r5, 0x540a, 0x2)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
socket$kcm(0x2, 0xa, 0x2)
write$tun(0xffffffffffffffff, &(0x7f00000004c0)={@val={0x4, 0x74}, @void, @eth={@broadcast, @broadcast, @val, {@ipv6={0x86dd, @udp={0x0, 0x6, "953e3e", 0x48, 0x11, 0x0, @empty, @private1, {[], {0x3000, 0x0, 0x48, 0x0, @wg=@cookie={0x3, 0x0, "b1999aa9423b268179eefdf90af2d0830911d82922987142", "2e06c3896092ad1ba7a53ead892b29c7fe864884dc26055074b851cad1a15ec6"}}}}}}}}, 0x8a)

2.026600506s ago: executing program 0 (id=1055):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-3way\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6ef915d564c90c200", 0x18)
r1 = socket(0x18, 0x8080c, 0x4)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r1, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)={0x1bc, r2, 0x10, 0xa25, 0x25dfdbfb, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}, {@pci={{0x8}, {0x11}}, {0xd}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}, {@pci={{0x8}, {0x11}}, {0xd}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}]}, 0x1bc}, 0x1, 0x0, 0x0, 0x40000c0}, 0x48000)
r3 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg$alg(r3, &(0x7f0000000400)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r3)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="08000000040000000d0d00000800000000000000", @ANYRES32, @ANYRESDEC], 0x48)

1.770492751s ago: executing program 1 (id=1056):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
recvmmsg(r0, &(0x7f0000001e80)=[{{0x0, 0x0, 0x0}, 0xe}, {{0x0, 0x0, &(0x7f0000000680)}, 0x9}, {{&(0x7f0000000240)=@rc={0x1f, @none}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000380)=""/10, 0xa}, {&(0x7f0000000480)=""/112, 0x70}, {&(0x7f00000005c0)=""/168, 0xa8}, {&(0x7f0000000680)=""/240, 0xf0}, {&(0x7f0000000780)=""/226, 0xe2}, {&(0x7f0000000880)=""/158, 0x9e}], 0x6, &(0x7f0000000940)=""/9, 0x9}, 0xad}, {{0x0, 0x0, &(0x7f0000001e00)}, 0x1}], 0x4, 0x0, 0x0)

1.675294975s ago: executing program 1 (id=1057):
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='io\x00')
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0xcb)
bind$ax25(r1, &(0x7f0000000000)={{0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}}, [@null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @default, @bcast]}, 0x10)
openat$cgroup(0xffffffffffffffff, &(0x7f0000000080)='syz1\x00', 0x200002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='sched_switch\x00', 0xffffffffffffffff, 0x0, 0x7d}, 0x18)
recvfrom$inet_nvme(r0, &(0x7f00000003c0)=""/4096, 0x1000, 0x100, &(0x7f00000013c0)=@llc={0x1a, 0x7, 0x64, 0x10, 0xa, 0x3, @broadcast}, 0x80)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r5 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r6 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$UI_DEV_CREATE(r6, 0x4008556c)
ioctl$TIOCL_GETMOUSEREPORTING(r5, 0x5412, &(0x7f00000000c0)=0x13)
ioctl$TCXONC(r5, 0x540a, 0x2)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
socket$kcm(0x2, 0xa, 0x2)
write$tun(0xffffffffffffffff, &(0x7f00000004c0)={@val={0x4, 0x74}, @void, @eth={@broadcast, @broadcast, @val, {@ipv6={0x86dd, @udp={0x0, 0x6, "953e3e", 0x48, 0x11, 0x0, @empty, @private1, {[], {0x3000, 0x0, 0x48, 0x0, @wg=@cookie={0x3, 0x0, "b1999aa9423b268179eefdf90af2d0830911d82922987142", "2e06c3896092ad1ba7a53ead892b29c7fe864884dc26055074b851cad1a15ec6"}}}}}}}}, 0x8a)

1.099678699s ago: executing program 0 (id=1058):
openat$binder_debug(0xffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000280)='io_uring_poll_arm\x00', r0, 0x0, 0x3}, 0xffffffffffffffe4)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r1, 0x400448ca, 0x0)
r2 = openat$dsp(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r2, 0xc0045006, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x400448c9, 0x0)
bind$bt_hci(r3, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
syz_usb_connect$cdc_ncm(0x5, 0x0, 0x0, 0x0)
mq_open(0x0, 0x1, 0x31, 0x0)
write(r3, &(0x7f0000000340)="07000000010000", 0x7)
openat$ttyprintk(0xffffffffffffff9c, 0x0, 0x22802, 0x0)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, 0x0, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000080), 0x208e24b)
mmap(&(0x7f0000fe9000/0x1000)=nil, 0x1000, 0x2000006, 0x13, 0xffffffffffffffff, 0xffffd000)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x0, 0x0, 0x0, 0x202, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
r8 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_GET_PIT(r8, 0xc048ae65, &(0x7f00000000c0))
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000001200)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r6, 0xffffffffffffffff, &(0x7f000049c000/0x18000)=nil, &(0x7f0000000400)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
socket$inet6(0xa, 0x2, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r7, 0x4008ae93, &(0x7f0000000640)=0x1)
gettid()

1.099253425s ago: executing program 3 (id=1059):
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='io\x00')
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0xcb)
bind$ax25(r1, &(0x7f0000000000)={{0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}}, [@null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @default, @bcast]}, 0x10)
openat$cgroup(0xffffffffffffffff, &(0x7f0000000080)='syz1\x00', 0x200002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='sched_switch\x00', 0xffffffffffffffff, 0x0, 0x7d}, 0x18)
recvfrom$inet_nvme(r0, &(0x7f00000003c0)=""/4096, 0x1000, 0x100, &(0x7f00000013c0)=@llc={0x1a, 0x7, 0x64, 0x10, 0xa, 0x3, @broadcast}, 0x80)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r5 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r6 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$UI_DEV_CREATE(r6, 0x4008556c)
ioctl$TCXONC(r5, 0x540a, 0x2)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40841, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r8 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r7, &(0x7f00000004c0)={@val={0x4, 0x74}, @void, @eth={@broadcast, @broadcast, @val, {@ipv6={0x86dd, @udp={0x0, 0x6, "953e3e", 0x48, 0x11, 0x0, @empty, @private1, {[], {0x3000, 0x0, 0x48, 0x0, @wg=@cookie={0x3, 0x0, "b1999aa9423b268179eefdf90af2d0830911d82922987142", "2e06c3896092ad1ba7a53ead892b29c7fe864884dc26055074b851cad1a15ec6"}}}}}}}}, 0x8a)

658.850517ms ago: executing program 1 (id=1060):
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='io\x00')
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0xcb)
bind$ax25(r1, &(0x7f0000000000)={{0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}}, [@null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @default, @bcast]}, 0x10)
openat$cgroup(0xffffffffffffffff, &(0x7f0000000080)='syz1\x00', 0x200002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='sched_switch\x00', 0xffffffffffffffff, 0x0, 0x7d}, 0x18)
recvfrom$inet_nvme(r0, &(0x7f00000003c0)=""/4096, 0x1000, 0x100, &(0x7f00000013c0)=@llc={0x1a, 0x7, 0x64, 0x10, 0xa, 0x3, @broadcast}, 0x80)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r5 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r6 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$UI_DEV_CREATE(r6, 0x4008556c)
ioctl$TCXONC(r5, 0x540a, 0x2)
r7 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40841, 0x0)
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r8 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r7, &(0x7f00000004c0)={@val={0x4, 0x74}, @void, @eth={@broadcast, @broadcast, @val, {@ipv6={0x86dd, @udp={0x0, 0x6, "953e3e", 0x48, 0x11, 0x0, @empty, @private1, {[], {0x3000, 0x0, 0x48, 0x0, @wg=@cookie={0x3, 0x0, "b1999aa9423b268179eefdf90af2d0830911d82922987142", "2e06c3896092ad1ba7a53ead892b29c7fe864884dc26055074b851cad1a15ec6"}}}}}}}}, 0x8a)

78.754603ms ago: executing program 3 (id=1061):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="600000030a0601"], 0x60}}, 0x0)

0s ago: executing program 3 (id=1062):
syz_init_net_socket$x25(0x9, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$DCCPDIAG_GETSOCK(r0, &(0x7f0000002780)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[], 0x54}, 0x1, 0x0, 0x0, 0x90}, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100800001)
sched_setaffinity(0x0, 0x0, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, 0x0, &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[])
read$FUSE(r2, &(0x7f000000e280)={0x2020}, 0x2020)
socket$nl_rdma(0x10, 0x3, 0x14)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
r3 = dup(0xffffffffffffffff)
write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18}, 0x18)
getresuid(&(0x7f0000000440), 0x0, &(0x7f00000004c0))
chown(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r4, 0x400448cb, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f00000004c0)={0x1f, 0xffff, 0x3}, 0x6)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x40051)
write(r5, &(0x7f0000000040)="05000000010000", 0x7)
bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000000), 0x4)

kernel console output (not intermixed with test programs):

dv_slave_1
[  262.960640][T16711] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  262.960651][T16711] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  263.035523][T16711] hsr_slave_0: entered promiscuous mode
[  263.037932][T16711] hsr_slave_1: entered promiscuous mode
[  263.040226][T16711] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  263.043526][T16711] Cannot create hsr debugfs directory
[  263.454887][ T4773] Bluetooth: hci1: command tx timeout
[  263.519946][T16711] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  263.655215][T16711] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  263.802202][T16711] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  263.967329][T16711] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  264.005890][ T5346] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  264.011092][ T5346] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  264.013585][ T5346] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  264.016367][ T5346] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  264.020877][ T5346] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  264.023677][ T5346] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  264.124007][T17735] chnl_net:caif_netlink_parms(): no params data found
[  264.435626][T17735] bridge0: port 1(bridge_slave_0) entered blocking state
[  264.437408][T17735] bridge0: port 1(bridge_slave_0) entered disabled state
[  264.439278][T17735] bridge_slave_0: entered allmulticast mode
[  264.441193][T17735] bridge_slave_0: entered promiscuous mode
[  264.460413][   T39] audit: type=1400 audit(1729073232.699:1829): avc:  denied  { setattr } for  pid=18038 comm="syz.2.780" name="NETLINK" dev="sockfs" ino=26219 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  264.463224][T17735] bridge0: port 2(bridge_slave_1) entered blocking state
[  264.477656][T17735] bridge0: port 2(bridge_slave_1) entered disabled state
[  264.477690][   T39] audit: type=1400 audit(1729073232.708:1830): avc:  denied  { getopt } for  pid=18038 comm="syz.2.780" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  264.480067][T17735] bridge_slave_1: entered allmulticast mode
[  264.484809][   T39] audit: type=1400 audit(1729073232.708:1831): avc:  denied  { read write } for  pid=18038 comm="syz.2.780" name="hpet" dev="devtmpfs" ino=630 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  264.496922][T17735] bridge_slave_1: entered promiscuous mode
[  264.499290][T16711] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  264.507953][   T39] audit: type=1400 audit(1729073232.708:1832): avc:  denied  { open } for  pid=18038 comm="syz.2.780" path="/dev/hpet" dev="devtmpfs" ino=630 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[  264.518757][   T39] audit: type=1400 audit(1729073232.708:1833): avc:  denied  { ioctl } for  pid=18038 comm="syz.2.780" path="socket:[26221]" dev="sockfs" ino=26221 ioctlcmd=0x9411 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  264.530581][   T39] audit: type=1400 audit(1729073232.708:1834): avc:  denied  { read write } for  pid=18038 comm="syz.2.780" name="uhid" dev="devtmpfs" ino=1110 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  264.538872][   T39] audit: type=1400 audit(1729073232.708:1835): avc:  denied  { open } for  pid=18038 comm="syz.2.780" path="/dev/uhid" dev="devtmpfs" ino=1110 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  264.557054][   T39] audit: type=1326 audit(1729073232.783:1836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18055 comm="syz.2.781" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f449557dff9 code=0x7ffc0000
[  264.575026][   T39] audit: type=1326 audit(1729073232.783:1837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18055 comm="syz.2.781" exe="/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f449557dff9 code=0x7ffc0000
[  264.618860][T16711] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  264.932137][T16711] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  264.940609][T16711] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  264.952950][T17735] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  264.967185][T17735] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  265.060194][T17735] team0: Port device team_slave_0 added
[  265.064611][T17735] team0: Port device team_slave_1 added
[  265.674559][ T5346] Bluetooth: hci1: command tx timeout
[  266.033521][   T39] kauditd_printk_skb: 11 callbacks suppressed
[  266.033536][   T39] audit: type=1400 audit(1729073234.167:1849): avc:  denied  { write } for  pid=18398 comm="syz.2.782" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  266.137547][T17735] batman_adv: batadv0: Adding interface: batadv_slave_0
[  266.139404][T17735] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  266.163763][T17735] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  266.169406][T17735] batman_adv: batadv0: Adding interface: batadv_slave_1
[  266.171902][T17735] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  266.181697][T17735] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  266.188968][ T5346] Bluetooth: hci7: command tx timeout
[  267.898356][ T5346] Bluetooth: hci1: command tx timeout
[  268.411453][ T5346] Bluetooth: hci7: command tx timeout
[  268.926407][ T1378] ieee802154 phy0 wpan0: encryption failed: -22
[  268.928091][ T1378] ieee802154 phy1 wpan1: encryption failed: -22
[  268.994091][T17735] hsr_slave_0: entered promiscuous mode
[  269.020956][T17735] hsr_slave_1: entered promiscuous mode
[  269.043416][T17735] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  269.046235][T17735] Cannot create hsr debugfs directory
[  269.062799][T16711] 8021q: adding VLAN 0 to HW filter on device bond0
[  269.069777][T16711] 8021q: adding VLAN 0 to HW filter on device team0
[  269.078537][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  269.081044][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  269.084578][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  269.087080][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  269.314265][   T39] audit: type=1400 audit(1729073237.235:1850): avc:  denied  { ioctl } for  pid=18728 comm="syz.2.785" path="socket:[25485]" dev="sockfs" ino=25485 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  269.350692][T18729] netlink: 76 bytes leftover after parsing attributes in process `syz.2.785'.
[  269.922847][T17735] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  269.958637][T16711] 8021q: adding VLAN 0 to HW filter on device batadv0
[  269.977590][T16711] veth0_vlan: entered promiscuous mode
[  269.986583][T16711] veth1_vlan: entered promiscuous mode
[  269.998822][T16711] veth0_macvtap: entered promiscuous mode
[  270.003463][T16711] veth1_macvtap: entered promiscuous mode
[  270.013993][T16711] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  270.018560][T16711] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  270.021062][T16711] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  270.023710][T16711] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  270.031046][T16711] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  270.033708][T16711] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  270.036588][T16711] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  270.041354][T16711] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  270.043858][T16711] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  270.046520][T16711] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  270.049624][T16711] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  270.052334][T16711] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  270.055674][T16711] batman_adv: batadv0: Interface activated: batadv_slave_0
[  270.062742][T16711] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  270.065635][T16711] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  270.068154][T16711] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  270.071116][T16711] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  270.073599][T16711] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  270.076297][T16711] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  270.078855][T16711] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  270.081583][T16711] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  270.084075][T16711] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  270.086751][T16711] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  270.089266][T16711] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  270.092041][T16711] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  270.095284][T16711] batman_adv: batadv0: Interface activated: batadv_slave_1
[  270.168121][T17735] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  270.177004][T16711] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  270.184006][T16711] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  270.186570][T16711] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  270.188817][T16711] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  270.214796][   T39] audit: type=1326 audit(1729073238.077:1851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18784 comm="syz.2.788" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f449557dff9 code=0x7ffc0000
[  270.221831][   T39] audit: type=1326 audit(1729073238.087:1852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18784 comm="syz.2.788" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f449557dff9 code=0x7ffc0000
[  270.229053][   T39] audit: type=1326 audit(1729073238.096:1853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18784 comm="syz.2.788" exe="/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f449557dff9 code=0x7ffc0000
[  270.235423][   T39] audit: type=1326 audit(1729073238.096:1854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18784 comm="syz.2.788" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f449557dff9 code=0x7ffc0000
[  270.245363][   T39] audit: type=1326 audit(1729073238.096:1855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18784 comm="syz.2.788" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f449557dff9 code=0x7ffc0000
[  270.260292][   T39] audit: type=1326 audit(1729073238.096:1856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18784 comm="syz.2.788" exe="/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f449557dff9 code=0x7ffc0000
[  270.270188][   T39] audit: type=1326 audit(1729073238.096:1857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18784 comm="syz.2.788" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f449557dff9 code=0x7ffc0000
[  270.276551][   T39] audit: type=1326 audit(1729073238.096:1858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18784 comm="syz.2.788" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f449557dff9 code=0x7ffc0000
[  270.635069][ T5346] Bluetooth: hci7: command tx timeout
[  272.858796][ T5346] Bluetooth: hci7: command tx timeout
[  275.514260][T17735] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  276.579000][ T1099] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  276.581064][ T1099] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  276.590147][ T1100] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  276.592322][ T1100] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  276.918597][T17735] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  277.527345][   T39] kauditd_printk_skb: 7 callbacks suppressed
[  277.527356][   T39] audit: type=1400 audit(1729073244.915:1866): avc:  denied  { bind } for  pid=18838 comm="syz.2.792" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  277.534474][   T39] audit: type=1400 audit(1729073244.924:1867): avc:  denied  { read } for  pid=18838 comm="syz.2.792" path="socket:[26514]" dev="sockfs" ino=26514 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  277.666130][T18839] netlink: 16 bytes leftover after parsing attributes in process `syz.2.792'.
[  277.684805][   T39] audit: type=1400 audit(1729073245.065:1868): avc:  denied  { write } for  pid=18838 comm="syz.2.792" name="001" dev="devtmpfs" ino=748 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  277.738876][T18845] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  278.096725][   T39] audit: type=1400 audit(1729073245.448:1869): avc:  denied  { create } for  pid=18853 comm="syz.2.794" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1
[  278.124210][   T39] audit: type=1326 audit(1729073245.476:1870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18855 comm="syz.2.795" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f449557dff9 code=0x7ffc0000
[  278.133002][   T39] audit: type=1326 audit(1729073245.476:1871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18855 comm="syz.2.795" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f449557dff9 code=0x7ffc0000
[  278.142599][   T39] audit: type=1326 audit(1729073245.476:1872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18855 comm="syz.2.795" exe="/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7f449557dff9 code=0x7ffc0000
[  278.148378][   T39] audit: type=1326 audit(1729073245.476:1873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18855 comm="syz.2.795" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f449557dff9 code=0x7ffc0000
[  278.154343][   T39] audit: type=1326 audit(1729073245.476:1874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18855 comm="syz.2.795" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f449557dff9 code=0x7ffc0000
[  278.160452][   T39] audit: type=1326 audit(1729073245.476:1875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18855 comm="syz.2.795" exe="/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f449557dff9 code=0x7ffc0000
[  280.559736][T18865] netlink: 'syz.2.798': attribute type 9 has an invalid length.
[  280.561815][T18865] netlink: 134660 bytes leftover after parsing attributes in process `syz.2.798'.
[  282.988488][T18833] overlayfs: failed to resolve './bus': -2
[  283.094039][   T39] kauditd_printk_skb: 8 callbacks suppressed
[  283.094051][   T39] audit: type=1400 audit(1729073250.125:1884): avc:  denied  { setopt } for  pid=18876 comm="syz.3.800" laddr=fe80::a8aa:aaff:feaa:aa16 lport=58 faddr=ff02::1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  283.410723][   T39] audit: type=1326 audit(1729073250.425:1885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18886 comm="syz.0.803" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ca097dff9 code=0x7ffc0000
[  283.459528][   T39] audit: type=1326 audit(1729073250.434:1886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18886 comm="syz.0.803" exe="/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7f2ca097dff9 code=0x7ffc0000
[  283.509419][   T39] audit: type=1326 audit(1729073250.434:1887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18886 comm="syz.0.803" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ca097dff9 code=0x7ffc0000
[  283.526809][   T39] audit: type=1326 audit(1729073250.434:1888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18886 comm="syz.0.803" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ca097dff9 code=0x7ffc0000
[  283.542661][   T39] audit: type=1326 audit(1729073250.434:1889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18886 comm="syz.0.803" exe="/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f2ca097dff9 code=0x7ffc0000
[  283.581719][   T39] audit: type=1326 audit(1729073250.443:1890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18886 comm="syz.0.803" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ca097dff9 code=0x7ffc0000
[  283.610103][   T39] audit: type=1326 audit(1729073250.443:1891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18886 comm="syz.0.803" exe="/syz-executor" sig=0 arch=c000003e syscall=203 compat=0 ip=0x7f2ca097dff9 code=0x7ffc0000
[  283.625740][T16575] bridge_slave_1: left allmulticast mode
[  283.631033][T16575] bridge_slave_1: left promiscuous mode
[  283.633093][T16575] bridge0: port 2(bridge_slave_1) entered disabled state
[  283.639946][   T39] audit: type=1326 audit(1729073250.443:1892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18886 comm="syz.0.803" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ca097dff9 code=0x7ffc0000
[  283.659945][   T39] audit: type=1326 audit(1729073250.443:1893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18886 comm="syz.0.803" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2ca097dff9 code=0x7ffc0000
[  283.703075][T16575] bridge_slave_0: left allmulticast mode
[  283.710258][T16575] bridge_slave_0: left promiscuous mode
[  283.715024][T16575] bridge0: port 1(bridge_slave_0) entered disabled state
[  284.396425][T16575] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  284.398767][T16575] bond_slave_0: left promiscuous mode
[  284.402005][T16575] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  284.405144][T16575] bond_slave_1: left promiscuous mode
[  284.412294][T16575] bond0 (unregistering): Released all slaves
[  284.534563][T17735] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  284.545662][T17735] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  284.554626][T17735] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  284.701616][T17735] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  284.831071][T17735] 8021q: adding VLAN 0 to HW filter on device bond0
[  284.839353][T17735] 8021q: adding VLAN 0 to HW filter on device team0
[  284.870023][T17735] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  284.879555][T17735] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  284.905397][ T1102] bridge0: port 1(bridge_slave_0) entered blocking state
[  284.907618][ T1102] bridge0: port 1(bridge_slave_0) entered forwarding state
[  284.910575][ T1102] bridge0: port 2(bridge_slave_1) entered blocking state
[  284.912457][ T1102] bridge0: port 2(bridge_slave_1) entered forwarding state
[  285.208429][T16575] hsr_slave_0: left promiscuous mode
[  285.211726][T16575] hsr_slave_1: left promiscuous mode
[  285.227875][T16575] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  285.230427][T16575] batman_adv: batadv0: Removing interface: batadv_slave_0
[  285.233078][T16575] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  285.235344][T16575] batman_adv: batadv0: Removing interface: batadv_slave_1
[  285.308424][T16575] veth1_macvtap: left promiscuous mode
[  285.310337][T16575] veth0_macvtap: left promiscuous mode
[  285.312451][T16575] veth1_vlan: left promiscuous mode
[  285.317753][T16575] veth0_vlan: left promiscuous mode
[  285.527129][ T4797] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  285.715700][ T4797] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  285.722959][ T4797] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  285.727746][ T4797] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  285.731554][ T4797] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  285.741581][ T4797] usb 7-1: config 0 descriptor??
[  286.248700][ T4797] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  286.250918][ T4797] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving
[  286.276543][ T4797] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  286.470628][T18955] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  286.489486][T18955] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  286.697929][T16575] team0 (unregistering): Port device team_slave_1 removed
[  286.852391][T16575] team0 (unregistering): Port device team_slave_0 removed
[  287.723529][T18942] netlink: 40 bytes leftover after parsing attributes in process `syz.2.806'.
[  287.732630][ T4797] usb 7-1: USB disconnect, device number 10
[  287.791777][T17735] 8021q: adding VLAN 0 to HW filter on device batadv0
[  287.818899][T17735] veth0_vlan: entered promiscuous mode
[  287.820792][T18986] trusted_key: syz.0.810 sent an empty control message without MSG_MORE.
[  287.824768][T17735] veth1_vlan: entered promiscuous mode
[  287.856056][T17735] veth0_macvtap: entered promiscuous mode
[  287.860739][T17735] veth1_macvtap: entered promiscuous mode
[  287.870985][T17735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  287.877414][T17735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  287.880558][T17735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  287.883815][T17735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  287.886454][T17735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  287.889565][T17735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  287.892284][T17735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  287.894975][T17735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  287.897509][T17735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  287.900494][T17735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  287.903011][T17735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  287.905665][T17735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  287.909314][T17735] batman_adv: batadv0: Interface activated: batadv_slave_0
[  287.912355][T17735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  287.915076][T17735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  287.917593][T17735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  287.920272][T17735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  287.922948][T17735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  287.925616][T17735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  287.928126][T17735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  287.930816][T17735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  287.933436][T17735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  287.936951][T17735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  287.939479][T17735] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  287.942161][T17735] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  287.946042][T17735] batman_adv: batadv0: Interface activated: batadv_slave_1
[  287.958079][T17735] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  287.960351][T17735] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  287.962627][T17735] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  287.965109][T17735] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  287.997621][ T1100] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  288.003706][ T1100] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  288.013797][ T1100] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  288.016495][ T1100] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  288.445582][T19018] FAULT_INJECTION: forcing a failure.
[  288.445582][T19018] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  288.471062][T19018] CPU: 3 UID: 0 PID: 19018 Comm: syz.3.812 Not tainted 6.12.0-rc3-syzkaller-00044-g2f87d0916ce0 #0
[  288.473875][T19018] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  288.476628][T19018] Call Trace:
[  288.477485][T19018]  <TASK>
[  288.478265][T19018]  dump_stack_lvl+0x16c/0x1f0
[  288.479493][T19018]  should_fail_ex+0x497/0x5b0
[  288.480735][T19018]  _copy_from_user+0x30/0xf0
[  288.481954][T19018]  restore_altstack+0x94/0x170
[  288.483203][T19018]  ? __pfx_restore_altstack+0x10/0x10
[  288.484613][T19018]  ? _raw_spin_unlock_irq+0x23/0x50
[  288.485970][T19018]  ? lockdep_hardirqs_on+0x7c/0x110
[  288.487328][T19018]  ? _raw_spin_unlock_irq+0x2e/0x50
[  288.488683][T19018]  ? set_current_blocked+0xdd/0x120
[  288.490036][T19018]  __do_sys_rt_sigreturn+0x132/0x230
[  288.491407][T19018]  ? __pfx___do_sys_rt_sigreturn+0x10/0x10
[  288.492917][T19018]  do_syscall_64+0xcd/0x250
[  288.494152][T19018]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  288.495687][T19018] RIP: 0033:0x7f48aa319959
[  288.496951][T19018] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25
[  288.501905][T19018] RSP: 002b:00007f48ab1d8340 EFLAGS: 00000206 ORIG_RAX: 000000000000000f
[  288.504020][T19018] RAX: ffffffffffffffda RBX: 00007f48aa535f80 RCX: 00007f48aa319959
[  288.506031][T19018] RDX: 00007f48ab1d8340 RSI: 00007f48ab1d8470 RDI: 0000000000000021
[  288.508015][T19018] RBP: 00007f48ab1d9090 R08: 0000000000000000 R09: 0000000000000000
[  288.509980][T19018] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[  288.511998][T19018] R13: 0000000000000000 R14: 00007f48aa535f80 R15: 00007ffe33a00798
[  288.514066][T19018]  </TASK>
[  288.660745][   T39] kauditd_printk_skb: 4 callbacks suppressed
[  288.660755][   T39] audit: type=1326 audit(1729073255.335:1898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19022 comm="syz.3.814" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48aa37dff9 code=0x7ffc0000
[  288.676371][   T39] audit: type=1326 audit(1729073255.335:1899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19022 comm="syz.3.814" exe="/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7f48aa37dff9 code=0x7ffc0000
[  288.685022][   T39] audit: type=1326 audit(1729073255.335:1900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19022 comm="syz.3.814" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48aa37dff9 code=0x7ffc0000
[  288.701331][   T39] audit: type=1326 audit(1729073255.335:1901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19022 comm="syz.3.814" exe="/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f48aa37dff9 code=0x7ffc0000
[  288.710182][   T39] audit: type=1326 audit(1729073255.345:1902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19022 comm="syz.3.814" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48aa37dff9 code=0x7ffc0000
[  288.720820][   T39] audit: type=1326 audit(1729073255.345:1903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19022 comm="syz.3.814" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48aa37dff9 code=0x7ffc0000
[  288.729638][   T39] audit: type=1326 audit(1729073255.345:1904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19022 comm="syz.3.814" exe="/syz-executor" sig=0 arch=c000003e syscall=203 compat=0 ip=0x7f48aa37dff9 code=0x7ffc0000
[  288.742856][   T39] audit: type=1326 audit(1729073255.345:1905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19022 comm="syz.3.814" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48aa37dff9 code=0x7ffc0000
[  288.753711][   T39] audit: type=1326 audit(1729073255.345:1906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19022 comm="syz.3.814" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48aa37dff9 code=0x7ffc0000
[  288.764371][   T39] audit: type=1326 audit(1729073255.345:1907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19022 comm="syz.3.814" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f48aa37dff9 code=0x7ffc0000
[  288.835228][T19029] netlink: 16 bytes leftover after parsing attributes in process `syz.0.815'.
[  288.837664][T19029] netlink: 8 bytes leftover after parsing attributes in process `syz.0.815'.
[  289.014423][T19037] virtiofs: Unknown parameter 'usrquota—‰”-[§å£¦f	ȸo›�å’2PÁ†ôÊt>]¢±È+“ÌO{ÄŸ‚'
[  289.260688][T19058] netlink: 12 bytes leftover after parsing attributes in process `syz.1.821'.
[  289.267369][T19058] netlink: 4 bytes leftover after parsing attributes in process `syz.1.821'.
[  290.046105][T19082] FAULT_INJECTION: forcing a failure.
[  290.046105][T19082] name failslab, interval 1, probability 0, space 0, times 0
[  290.052478][T19082] CPU: 3 UID: 0 PID: 19082 Comm: syz.1.826 Not tainted 6.12.0-rc3-syzkaller-00044-g2f87d0916ce0 #0
[  290.056035][T19082] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  290.059293][T19082] Call Trace:
[  290.060300][T19082]  <TASK>
[  290.061259][T19082]  dump_stack_lvl+0x16c/0x1f0
[  290.062842][T19082]  should_fail_ex+0x497/0x5b0
[  290.064402][T19082]  ? fs_reclaim_acquire+0xae/0x150
[  290.066027][T19082]  should_failslab+0xc2/0x120
[  290.067555][T19082]  __kmalloc_noprof+0xcb/0x400
[  290.069070][T19082]  ? down_write_nested+0x152/0x210
[  290.070762][T19082]  lsm_blob_alloc+0x68/0x90
[  290.072343][T19082]  security_sb_alloc+0x28/0x230
[  290.073945][T19082]  alloc_super+0x245/0xbd0
[  290.075478][T19082]  ? lock_acquire+0x2f/0xb0
[  290.076952][T19082]  ? __pfx_super_s_dev_test+0x10/0x10
[  290.078648][T19082]  sget_fc+0x116/0xc20
[  290.079956][T19082]  ? __pfx_cred_has_capability.isra.0+0x10/0x10
[  290.081983][T19082]  ? __pfx_super_s_dev_set+0x10/0x10
[  290.083642][T19082]  get_tree_bdev+0x155/0x610
[  290.085123][T19082]  ? __pfx_squashfs_fill_super+0x10/0x10
[  290.086894][T19082]  ? __pfx_get_tree_bdev+0x10/0x10
[  290.088513][T19082]  ? __pfx_vfs_parse_fs_string+0x10/0x10
[  290.090327][T19082]  ? cap_capable+0x1cf/0x240
[  290.091840][T19082]  ? bpf_lsm_capable+0x9/0x10
[  290.093374][T19082]  vfs_get_tree+0x8f/0x380
[  290.094778][T19082]  path_mount+0x14e6/0x1f20
[  290.096113][T19082]  ? kmem_cache_free+0x152/0x4b0
[  290.097690][T19082]  ? __pfx_path_mount+0x10/0x10
[  290.099257][T19082]  ? putname+0x12e/0x170
[  290.100623][T19082]  __x64_sys_mount+0x294/0x320
[  290.102110][T19082]  ? __pfx___x64_sys_mount+0x10/0x10
[  290.103354][T19082]  do_syscall_64+0xcd/0x250
[  290.104631][T19082]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  290.106459][T19082] RIP: 0033:0x7fbde9f7dff9
[  290.107910][T19082] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  290.114411][T19082] RSP: 002b:00007fbdead58038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  290.117526][T19082] RAX: ffffffffffffffda RBX: 00007fbdea135f80 RCX: 00007fbde9f7dff9
[  290.120388][T19082] RDX: 0000000020000040 RSI: 00000000200004c0 RDI: 0000000020000480
[  290.122773][T19082] RBP: 00007fbdead58090 R08: 0000000000000000 R09: 0000000000000000
[  290.125091][T19082] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  290.127248][T19082] R13: 0000000000000000 R14: 00007fbdea135f80 R15: 00007ffedd9462e8
[  290.129443][T19082]  </TASK>
[  290.322558][T19091] FAULT_INJECTION: forcing a failure.
[  290.322558][T19091] name failslab, interval 1, probability 0, space 0, times 0
[  290.326212][T19091] CPU: 2 UID: 0 PID: 19091 Comm: syz.1.828 Not tainted 6.12.0-rc3-syzkaller-00044-g2f87d0916ce0 #0
[  290.328942][T19091] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  290.331687][T19091] Call Trace:
[  290.332557][T19091]  <TASK>
[  290.333332][T19091]  dump_stack_lvl+0x16c/0x1f0
[  290.334579][T19091]  should_fail_ex+0x497/0x5b0
[  290.335804][T19091]  ? fs_reclaim_acquire+0xae/0x150
[  290.337140][T19091]  should_failslab+0xc2/0x120
[  290.338368][T19091]  __kmalloc_cache_noprof+0x6b/0x300
[  290.339735][T19091]  ? push_stack+0x7c/0x550
[  290.340875][T19091]  push_stack+0x7c/0x550
[  290.341988][T19091]  check_cond_jmp_op+0xb7a/0x7c50
[  290.343306][T19091]  ? __pfx_check_cond_jmp_op+0x10/0x10
[  290.344714][T19091]  ? kfree+0x14f/0x4b0
[  290.345777][T19091]  ? copy_verifier_state+0xaeb/0xf20
[  290.347143][T19091]  ? do_check_common+0x477b/0xbd20
[  290.348458][T19091]  do_check_common+0x7c5e/0xbd20
[  290.349775][T19091]  ? __pfx_mark_fastcall_pattern_for_call+0x10/0x10
[  290.351479][T19091]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  290.352901][T19091]  ? __pfx_do_check_common+0x10/0x10
[  290.354289][T19091]  ? kvfree+0x47/0x50
[  290.355330][T19091]  ? check_cfg+0x400/0x840
[  290.356500][T19091]  bpf_check+0x71b0/0xb310
[  290.357667][T19091]  ? kasan_save_stack+0x42/0x60
[  290.358945][T19091]  ? __pfx_bpf_check+0x10/0x10
[  290.360210][T19091]  ? __kasan_kmalloc+0xaa/0xb0
[  290.361465][T19091]  ? selinux_bpf_prog_load+0x15f/0x1c0
[  290.362888][T19091]  bpf_prog_load+0xedb/0x2660
[  290.364119][T19091]  ? __pfx_bpf_prog_load+0x10/0x10
[  290.365451][T19091]  ? avc_has_perm_noaudit+0x143/0x3a0
[  290.366871][T19091]  ? selinux_bpf+0xde/0x130
[  290.368053][T19091]  __sys_bpf+0x402b/0x49a0
[  290.369212][T19091]  ? ksys_write+0x21e/0x260
[  290.370404][T19091]  ? reacquire_held_locks+0x3f0/0x4c0
[  290.371791][T19091]  ? __pfx___sys_bpf+0x10/0x10
[  290.373019][T19091]  ? vfs_write+0x14d/0x1140
[  290.374227][T19091]  ? __mutex_unlock_slowpath+0x164/0x650
[  290.375690][T19091]  ? fput+0x30/0x390
[  290.376712][T19091]  ? ksys_write+0x1ad/0x260
[  290.377902][T19091]  ? __pfx_ksys_write+0x10/0x10
[  290.379169][T19091]  __x64_sys_bpf+0x78/0xc0
[  290.380488][T19091]  ? lockdep_hardirqs_on+0x7c/0x110
[  290.381872][T19091]  do_syscall_64+0xcd/0x250
[  290.383070][T19091]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  290.384625][T19091] RIP: 0033:0x7fbde9f7dff9
[  290.385821][T19091] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  290.390807][T19091] RSP: 002b:00007fbdead58038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  290.393037][T19091] RAX: ffffffffffffffda RBX: 00007fbdea135f80 RCX: 00007fbde9f7dff9
[  290.395091][T19091] RDX: 0000000000000094 RSI: 0000000020000840 RDI: 0000000000000005
[  290.397142][T19091] RBP: 00007fbdead58090 R08: 0000000000000000 R09: 0000000000000000
[  290.399199][T19091] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  290.401227][T19091] R13: 0000000000000000 R14: 00007fbdea135f80 R15: 00007ffedd9462e8
[  290.403277][T19091]  </TASK>
[  300.708636][ T4773] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  300.715552][ T4773] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  300.719328][ T4773] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  300.723309][ T4773] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  300.726349][ T4773] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  300.728396][ T4773] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  300.827874][T19117] chnl_net:caif_netlink_parms(): no params data found
[  301.006836][T19117] bridge0: port 1(bridge_slave_0) entered blocking state
[  301.008862][T19117] bridge0: port 1(bridge_slave_0) entered disabled state
[  301.015174][T19117] bridge_slave_0: entered allmulticast mode
[  301.017256][T19117] bridge_slave_0: entered promiscuous mode
[  301.023775][T19117] bridge0: port 2(bridge_slave_1) entered blocking state
[  301.025685][T19117] bridge0: port 2(bridge_slave_1) entered disabled state
[  301.027631][T19117] bridge_slave_1: entered allmulticast mode
[  301.030532][T19117] bridge_slave_1: entered promiscuous mode
[  301.099651][   T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  301.114573][T19117] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  301.119464][T19117] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  301.147158][T19117] team0: Port device team_slave_0 added
[  301.149839][T19117] team0: Port device team_slave_1 added
[  301.196505][   T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  301.204074][T19117] batman_adv: batadv0: Adding interface: batadv_slave_0
[  301.205907][T19117] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  301.213203][T19117] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  301.216899][T19117] batman_adv: batadv0: Adding interface: batadv_slave_1
[  301.218735][T19117] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  301.225592][T19117] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  301.275946][   T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  301.287019][T19117] hsr_slave_0: entered promiscuous mode
[  301.288960][T19117] hsr_slave_1: entered promiscuous mode
[  301.291536][T19117] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  301.293538][T19117] Cannot create hsr debugfs directory
[  301.369352][   T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  301.549104][   T12] bridge_slave_1: left allmulticast mode
[  301.550692][   T12] bridge_slave_1: left promiscuous mode
[  301.553394][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  301.560231][   T12] bridge_slave_0: left allmulticast mode
[  301.562306][   T12] bridge_slave_0: left promiscuous mode
[  301.565812][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  301.573089][   T12] bridge_slave_1: left allmulticast mode
[  301.575913][   T12] bridge_slave_1: left promiscuous mode
[  301.578096][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  301.590776][   T12] bridge_slave_0: left allmulticast mode
[  301.592544][   T12] bridge_slave_0: left promiscuous mode
[  301.594662][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  301.623706][   T39] kauditd_printk_skb: 6 callbacks suppressed
[  301.623721][   T39] audit: type=1400 audit(1729073267.458:1914): avc:  denied  { setopt } for  pid=20148 comm="syz.1.837" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  301.846759][T20160] Bluetooth: MGMT ver 1.23
[  301.848751][T20157] Bluetooth: hci0: Opcode 0x0c03 failed: -112
[  302.314754][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  302.319071][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  302.324830][   T12] bond0 (unregistering): Released all slaves
[  302.434537][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  302.442661][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  302.453381][   T12] bond0 (unregistering): Released all slaves
[  303.068790][T19117] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  303.073492][T19117] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  303.078091][T19117] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  303.083670][T19117] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  303.157548][   T39] audit: type=1400 audit(1729073268.889:1915): avc:  denied  { create } for  pid=20244 comm="syz.3.843" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  303.185329][T19117] 8021q: adding VLAN 0 to HW filter on device bond0
[  303.194204][T19117] 8021q: adding VLAN 0 to HW filter on device team0
[  303.198290][   T45] bridge0: port 1(bridge_slave_0) entered blocking state
[  303.200360][   T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[  303.210231][T16575] bridge0: port 2(bridge_slave_1) entered blocking state
[  303.212580][T16575] bridge0: port 2(bridge_slave_1) entered forwarding state
[  303.305025][T19117] 8021q: adding VLAN 0 to HW filter on device batadv0
[  303.323230][T19117] veth0_vlan: entered promiscuous mode
[  303.328806][T19117] veth1_vlan: entered promiscuous mode
[  303.367206][T19117] veth0_macvtap: entered promiscuous mode
[  303.372524][T19117] veth1_macvtap: entered promiscuous mode
[  303.379523][T19117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  303.382880][T19117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.385387][T19117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  303.388073][T19117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.390649][T19117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  303.393688][T19117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.396214][T19117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  303.398892][T19117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.401514][T19117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  303.404273][T19117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.406834][T19117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  303.410183][T19117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.412839][T19117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  303.415594][T19117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.418947][T19117] batman_adv: batadv0: Interface activated: batadv_slave_0
[  303.425930][T19117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  303.429079][T19117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.431824][T19117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  303.437489][T19117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.440216][T19117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  303.442900][T19117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.445448][T19117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  303.448422][T19117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.451074][T19117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  303.453653][T19117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.456240][T19117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  303.458892][T19117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.461379][T19117] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  303.464038][T19117] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  303.467464][T19117] batman_adv: batadv0: Interface activated: batadv_slave_1
[  303.482511][   T12] hsr_slave_0: left promiscuous mode
[  303.485202][   T12] hsr_slave_1: left promiscuous mode
[  303.488019][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  303.490617][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  303.493483][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  303.496213][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  303.505091][   T12] hsr_slave_0: left promiscuous mode
[  303.507830][   T12] hsr_slave_1: left promiscuous mode
[  303.512237][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  303.514870][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  303.517977][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  303.524500][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  303.567217][   T12] veth1_macvtap: left promiscuous mode
[  303.568735][   T12] veth0_macvtap: left promiscuous mode
[  303.570232][   T12] veth1_vlan: left promiscuous mode
[  303.571672][   T12] veth0_vlan: left promiscuous mode
[  303.574520][   T12] veth1_macvtap: left promiscuous mode
[  303.575986][   T12] veth0_macvtap: left promiscuous mode
[  303.577470][   T12] veth1_vlan: left promiscuous mode
[  303.578886][   T12] veth0_vlan: left promiscuous mode
[  304.079722][ T4773] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  304.089696][T20178] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  304.193861][   T39] audit: type=1326 audit(1729073269.862:1916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20280 comm="syz.1.846" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbde9f7dff9 code=0x7ffc0000
[  304.199880][   T39] audit: type=1326 audit(1729073269.862:1917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20280 comm="syz.1.846" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbde9f7dff9 code=0x7ffc0000
[  304.205887][   T39] audit: type=1326 audit(1729073269.862:1918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20280 comm="syz.1.846" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fbde9f7c990 code=0x7ffc0000
[  304.211970][   T39] audit: type=1326 audit(1729073269.862:1919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20280 comm="syz.1.846" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fbde9f7c990 code=0x7ffc0000
[  304.218027][   T39] audit: type=1326 audit(1729073269.862:1920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20280 comm="syz.1.846" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbde9f7dff9 code=0x7ffc0000
[  304.223935][   T39] audit: type=1326 audit(1729073269.862:1921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20280 comm="syz.1.846" exe="/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fbde9f7dff9 code=0x7ffc0000
[  304.225001][T20284] FAULT_INJECTION: forcing a failure.
[  304.225001][T20284] name failslab, interval 1, probability 0, space 0, times 0
[  304.229939][   T39] audit: type=1326 audit(1729073269.862:1922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20280 comm="syz.1.846" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbde9f7dff9 code=0x7ffc0000
[  304.232899][T20284] CPU: 0 UID: 0 PID: 20284 Comm: syz.1.846 Not tainted 6.12.0-rc3-syzkaller-00044-g2f87d0916ce0 #0
[  304.241131][T20284] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  304.244087][T20284] Call Trace:
[  304.244993][T20284]  <TASK>
[  304.245774][T20284]  dump_stack_lvl+0x16c/0x1f0
[  304.246994][T20284]  should_fail_ex+0x497/0x5b0
[  304.248378][T20284]  ? fs_reclaim_acquire+0xae/0x150
[  304.250217][T20284]  should_failslab+0xc2/0x120
[  304.251997][T20284]  kmem_cache_alloc_node_noprof+0x71/0x310
[  304.254049][T20284]  ? __alloc_skb+0x2b1/0x380
[  304.255230][T20284]  __alloc_skb+0x2b1/0x380
[  304.256608][T20284]  ? __pfx___alloc_skb+0x10/0x10
[  304.258275][T20284]  ? rcu_watching_snap_stopped_since+0xe0/0x110
[  304.260407][T20284]  ? trace_kmem_cache_alloc+0x2d/0xe0
[  304.262253][T20284]  ? kmem_cache_alloc_noprof+0x174/0x2f0
[  304.264224][T20284]  ? audit_log_start+0x2bc/0x7e0
[  304.265943][T20284]  audit_log_start+0x2e1/0x7e0
[  304.267623][   T39] audit: type=1326 audit(1729073269.862:1923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20280 comm="syz.1.846" exe="/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbde9f7dff9 code=0x7ffc0000
[  304.267686][T20284]  ? __pfx_audit_log_start+0x10/0x10
[  304.276782][T20284]  ? __pfx___lock_acquire+0x10/0x10
[  304.278479][T20284]  ? lockdep_hardirqs_on+0x7c/0x110
[  304.280354][T20284]  ? audit_log_end+0x14a/0x2b0
[  304.282084][T20284]  ? migrate_enable+0x1ef/0x260
[  304.283753][T20284]  ? __pfx_migrate_enable+0x10/0x10
[  304.285439][T20284]  audit_seccomp+0x61/0x280
[  304.287106][T20284]  __seccomp_filter+0x816/0xf40
[  304.288384][T20284]  ? __pfx___seccomp_filter+0x10/0x10
[  304.289707][T20284]  ? lock_acquire+0x2f/0xb0
[  304.290904][T20284]  ? __fget_files+0x244/0x3f0
[  304.292509][T20284]  __secure_computing+0x26c/0x3f0
[  304.294362][T20284]  syscall_trace_enter+0x8b/0x240
[  304.296161][T20284]  do_syscall_64+0x1ee/0x250
[  304.297842][T20284]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.299807][T20284] RIP: 0033:0x7fbde9f7dbfb
[  304.301299][T20284] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[  304.306832][T20284] RSP: 002b:00007fbdead35490 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  304.309583][T20284] RAX: ffffffffffffffda RBX: 00007fbdead35be0 RCX: 00007fbde9f7dbfb
[  304.312068][T20284] RDX: 00007fbdead35be0 RSI: 000000004020ae46 RDI: 00000000ffffffff
[  304.314889][T20284] RBP: ffffffffffffffff R08: 0000000000000001 R09: 0000000000000019
[  304.317652][T20284] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000007
[  304.320339][T20284] R13: 0000000020007000 R14: 0000000020000000 R15: 00000000fec00000
[  304.322411][T20284]  </TASK>
[  304.604265][   T12] team0 (unregistering): Port device team_slave_1 removed
[  304.709380][   T12] team0 (unregistering): Port device team_slave_0 removed
[  306.072863][   T12] team0 (unregistering): Port device team_slave_1 removed
[  306.160782][   T12] team0 (unregistering): Port device team_slave_0 removed
[  306.695312][T19117] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  306.697591][T19117] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  306.699985][T19117] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  306.702882][T19117] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  306.817544][   T80] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  306.820360][   T80] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  306.868669][   T80] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  306.871209][   T80] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  306.872477][T20308] Bluetooth: hci0: Opcode 0x0c03 failed: -112
[  307.529116][   T12] bridge_slave_1: left allmulticast mode
[  307.530855][   T12] bridge_slave_1: left promiscuous mode
[  307.532723][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  307.538562][   T12] bridge_slave_0: left allmulticast mode
[  307.540617][   T12] bridge_slave_0: left promiscuous mode
[  307.543936][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  307.977127][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  307.982460][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  307.986240][   T12] bond0 (unregistering): Released all slaves
[  308.144860][   T39] kauditd_printk_skb: 51 callbacks suppressed
[  308.144871][   T39] audit: type=1400 audit(1729073273.557:1973): avc:  denied  { bind } for  pid=20371 comm="syz.0.854" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  308.474662][   T12] hsr_slave_0: left promiscuous mode
[  308.477440][   T12] hsr_slave_1: left promiscuous mode
[  308.480775][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  308.483179][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  308.495215][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  308.497797][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  308.541248][   T12] veth1_macvtap: left promiscuous mode
[  308.542675][   T12] veth0_macvtap: left promiscuous mode
[  308.544290][   T12] veth1_vlan: left promiscuous mode
[  308.545719][   T12] veth0_vlan: left promiscuous mode
[  309.035701][ T4773] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  309.040406][T20358] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  309.082269][   T39] audit: type=1400 audit(1729073274.436:1974): avc:  denied  { execute_no_trans } for  pid=20398 comm="syz.2.858" path="/118/file0" dev="tmpfs" ino=686 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  309.357070][   T12] team0 (unregistering): Port device team_slave_1 removed
[  309.439339][   T12] team0 (unregistering): Port device team_slave_0 removed
[  310.060689][T20422] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  310.067833][   T39] audit: type=1326 audit(1729073275.344:1975): auid=4294967295 uid=16832 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20420 comm="syz.2.860" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f449557dff9 code=0x0
[  310.130402][T20424] usb usb9: usbfs: process 20424 (syz.2.860) did not claim interface 5 before use
[  310.211399][ T4773] Bluetooth: hci0: unexpected event for opcode 0x0c46
[  310.470793][T16575] Bluetooth: hci1: Frame reassembly failed (-84)
[  310.525559][T20438] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  310.528633][   T39] audit: type=1400 audit(1729073275.783:1976): avc:  denied  { getopt } for  pid=20427 comm="syz.0.862" lport=52392 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1
[  310.983774][   T39] audit: type=1400 audit(1729073276.214:1977): avc:  denied  { name_bind } for  pid=20448 comm="syz.2.866" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[  310.989055][   T39] audit: type=1400 audit(1729073276.214:1978): avc:  denied  { node_bind } for  pid=20448 comm="syz.2.866" saddr=::1 src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=dccp_socket permissive=1
[  310.995996][   T39] audit: type=1400 audit(1729073276.223:1979): avc:  denied  { name_connect } for  pid=20448 comm="syz.2.866" dest=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1
[  311.092988][T20451] Bluetooth: hci0: Opcode 0x0c03 failed: -112
[  312.388107][   T39] audit: type=1326 audit(1729073277.523:1980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20470 comm="syz.3.872" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f48aa37dff9 code=0x0
[  312.425535][T20474] FAULT_INJECTION: forcing a failure.
[  312.425535][T20474] name failslab, interval 1, probability 0, space 0, times 0
[  312.425699][   T39] audit: type=1400 audit(1729073277.570:1981): avc:  denied  { map } for  pid=20473 comm="syz.1.873" path="/dev/bus/usb/003/001" dev="devtmpfs" ino=732 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  312.429393][T20474] CPU: 1 UID: 0 PID: 20474 Comm: syz.1.873 Not tainted 6.12.0-rc3-syzkaller-00044-g2f87d0916ce0 #0
[  312.438345][T20474] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  312.441098][T20474] Call Trace:
[  312.441990][T20474]  <TASK>
[  312.443000][T20474]  dump_stack_lvl+0x16c/0x1f0
[  312.444614][T20474]  should_fail_ex+0x497/0x5b0
[  312.446202][T20474]  ? fs_reclaim_acquire+0xae/0x150
[  312.447947][T20474]  should_failslab+0xc2/0x120
[  312.449536][T20474]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  312.451384][T20474]  ? vm_area_dup+0x21/0x2f0
[  312.452933][T20474]  vm_area_dup+0x21/0x2f0
[  312.454424][T20474]  __split_vma+0x181/0x1160
[  312.455984][T20474]  ? __pfx___split_vma+0x10/0x10
[  312.457703][T20474]  vms_gather_munmap_vmas+0x38f/0x1750
[  312.459380][   T39] audit: type=1400 audit(1729073277.598:1982): avc:  denied  { create } for  pid=20475 comm="syz.2.874" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  312.459554][T20474]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[  312.468028][T20474]  ? mas_walk+0x6a6/0x910
[  312.469204][T20474]  mmap_region+0x376/0x2a60
[  312.470440][T20474]  ? __pfx_mark_lock+0x10/0x10
[  312.471733][T20474]  ? __pfx_mmap_region+0x10/0x10
[  312.473051][T20474]  ? avc_has_perm_noaudit+0x61/0x3a0
[  312.474501][T20474]  ? bpf_lsm_mmap_addr+0x9/0x10
[  312.475861][T20474]  ? security_mmap_addr+0x6c/0x1e0
[  312.477215][T20474]  ? __get_unmapped_area+0x26b/0x3a0
[  312.478629][T20474]  do_mmap+0xc00/0xfc0
[  312.479737][T20474]  vm_mmap_pgoff+0x1ba/0x360
[  312.480974][T20474]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  312.482360][T20474]  ? __fget_files+0x244/0x3f0
[  312.483663][T20474]  ksys_mmap_pgoff+0x32c/0x5c0
[  312.484942][T20474]  ? __pfx_ksys_write+0x10/0x10
[  312.486259][T20474]  __x64_sys_mmap+0x125/0x190
[  312.487530][T20474]  do_syscall_64+0xcd/0x250
[  312.488760][T20474]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  312.490419][T20474] RIP: 0033:0x7fbde9f7dff9
[  312.491608][T20474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  312.496793][T20474] RSP: 002b:00007fbdead58038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  312.499002][T20474] RAX: ffffffffffffffda RBX: 00007fbdea135f80 RCX: 00007fbde9f7dff9
[  312.501857][T20474] RDX: 0000000001000002 RSI: 0000000000400000 RDI: 0000000020000000
[  312.503963][T20474] RBP: 00007fbdead58090 R08: 0000000000000003 R09: 0000000000004000
[  312.506126][T20474] R10: 0000000000011012 R11: 0000000000000246 R12: 0000000000000001
[  312.508228][T20474] R13: 0000000000000000 R14: 00007fbdea135f80 R15: 00007ffedd9462e8
[  312.510382][T20474]  </TASK>
[  312.627676][ T4773] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  312.629673][ T5347] Bluetooth: hci1: command 0x1003 tx timeout
[  312.702185][T20518] ALSA: seq fatal error: cannot create timer (-22)
[  312.705979][T20518] ALSA: seq fatal error: cannot create timer (-22)
[  313.295956][T20532] x_tables: duplicate underflow at hook 2
[  313.312115][ T5346] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  313.608663][T20513] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  313.828896][T20553] FAULT_INJECTION: forcing a failure.
[  313.828896][T20553] name failslab, interval 1, probability 0, space 0, times 0
[  313.833026][T20553] CPU: 2 UID: 0 PID: 20553 Comm: syz.3.885 Not tainted 6.12.0-rc3-syzkaller-00044-g2f87d0916ce0 #0
[  313.835977][T20553] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  313.839059][T20553] Call Trace:
[  313.839985][T20553]  <TASK>
[  313.840819][T20553]  dump_stack_lvl+0x16c/0x1f0
[  313.842109][T20553]  should_fail_ex+0x497/0x5b0
[  313.843320][T20553]  ? fs_reclaim_acquire+0xae/0x150
[  313.844855][T20553]  should_failslab+0xc2/0x120
[  313.846074][T20553]  __kmalloc_node_noprof+0xd1/0x430
[  313.847381][T20553]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  313.848748][T20553]  __kvmalloc_node_noprof+0xad/0x1a0
[  313.850084][T20553]  alloc_netdev_mqs+0xd1/0x1420
[  313.851321][T20553]  ? __pfx_geneve_setup+0x10/0x10
[  313.852592][T20553]  rtnl_create_link+0xc10/0xfa0
[  313.853853][T20553]  __rtnl_newlink+0x10ae/0x1920
[  313.855085][T20553]  ? __pfx___rtnl_newlink+0x10/0x10
[  313.856415][T20553]  rtnl_newlink+0x67/0xa0
[  313.857506][T20553]  ? __pfx_rtnl_newlink+0x10/0x10
[  313.859073][T20553]  rtnetlink_rcv_msg+0x3c7/0xea0
[  313.860339][T20553]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  313.861739][T20553]  netlink_rcv_skb+0x16b/0x440
[  313.862965][T20553]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  313.864349][T20553]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  313.865700][T20553]  ? netlink_deliver_tap+0x1ae/0xd90
[  313.867052][T20553]  netlink_unicast+0x53c/0x7f0
[  313.868246][T20553]  ? __pfx_netlink_unicast+0x10/0x10
[  313.869582][T20553]  netlink_sendmsg+0x8b8/0xd70
[  313.870791][T20553]  ? __pfx_netlink_sendmsg+0x10/0x10
[  313.872106][T20553]  ? __import_iovec+0x1fd/0x6e0
[  313.873382][T20553]  ____sys_sendmsg+0xaaf/0xc90
[  313.874578][T20553]  ? copy_msghdr_from_user+0x10b/0x160
[  313.875924][T20553]  ? __pfx_____sys_sendmsg+0x10/0x10
[  313.877238][T20553]  ? __pfx___lock_acquire+0x10/0x10
[  313.878542][T20553]  ___sys_sendmsg+0x135/0x1e0
[  313.879720][T20553]  ? __pfx____sys_sendmsg+0x10/0x10
[  313.880998][T20553]  ? lock_acquire+0x2f/0xb0
[  313.882141][T20553]  ? __fget_files+0x40/0x3f0
[  313.883305][T20553]  ? fdget+0x176/0x210
[  313.884379][T20553]  __sys_sendmsg+0x117/0x1f0
[  313.885527][T20553]  ? __pfx___sys_sendmsg+0x10/0x10
[  313.886810][T20553]  ? __fget_files+0x244/0x3f0
[  313.887990][T20553]  do_syscall_64+0xcd/0x250
[  313.889102][T20553]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  313.890542][T20553] RIP: 0033:0x7f48aa37dff9
[  313.891635][T20553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  313.896220][T20553] RSP: 002b:00007f48ab1d9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  313.898257][T20553] RAX: ffffffffffffffda RBX: 00007f48aa535f80 RCX: 00007f48aa37dff9
[  313.900185][T20553] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003
[  313.902142][T20553] RBP: 00007f48ab1d9090 R08: 0000000000000000 R09: 0000000000000000
[  313.904215][T20553] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  313.906860][T20553] R13: 0000000000000000 R14: 00007f48aa535f80 R15: 00007ffe33a00798
[  313.909421][T20553]  </TASK>
[  314.570118][   T39] kauditd_printk_skb: 10 callbacks suppressed
[  314.570129][   T39] audit: type=1400 audit(1729073279.562:1993): avc:  denied  { sqpoll } for  pid=20564 comm="syz.0.887" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  314.859445][T20603] Unknown options in mask 1f4
[  314.872499][   T39] audit: type=1400 audit(1729073279.843:1994): avc:  denied  { setopt } for  pid=20602 comm="syz.1.890" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  314.990901][ T4797] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  315.164817][ T4797] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  315.167407][ T4797] usb 7-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  315.170734][ T4797] usb 7-1: New USB device found, idVendor=054c, idProduct=03d5, bcdDevice= 0.10
[  315.173158][ T4797] usb 7-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[  315.175276][ T4797] usb 7-1: Manufacturer: syz
[  315.177793][ T4797] usb 7-1: config 0 descriptor??
[  316.627450][   T39] audit: type=1326 audit(1729073281.499:1995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20617 comm="syz.0.892" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f980957dff9 code=0x7ffc0000
[  316.633576][   T39] audit: type=1326 audit(1729073281.499:1996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20617 comm="syz.0.892" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f980957dff9 code=0x7ffc0000
[  316.639714][   T39] audit: type=1326 audit(1729073281.508:1997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20617 comm="syz.0.892" exe="/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f980957dff9 code=0x7ffc0000
[  316.645713][   T39] audit: type=1326 audit(1729073281.508:1998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20617 comm="syz.0.892" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f980957dff9 code=0x7ffc0000
[  316.658121][   T39] audit: type=1326 audit(1729073281.508:1999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20617 comm="syz.0.892" exe="/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7f980957dff9 code=0x7ffc0000
[  316.664713][   T39] audit: type=1326 audit(1729073281.508:2000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20617 comm="syz.0.892" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f980957dff9 code=0x7ffc0000
[  316.673216][   T39] audit: type=1326 audit(1729073281.508:2001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20617 comm="syz.0.892" exe="/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f980957dff9 code=0x7ffc0000
[  316.679231][   T39] audit: type=1326 audit(1729073281.508:2002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20617 comm="syz.0.892" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f980957dff9 code=0x7ffc0000
[  316.925486][T20623] SELinux:  Context Ü is not valid (left unmapped).
[  317.234414][T20635] 9pnet_virtio: no channels available for device syz
[  317.798717][   T55] usb 7-1: USB disconnect, device number 11
[  317.978734][T20698] Bluetooth: hci0: Opcode 0x0c03 failed: -112
[  318.798802][T20724] FAULT_INJECTION: forcing a failure.
[  318.798802][T20724] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  318.801952][T20724] CPU: 1 UID: 0 PID: 20724 Comm: syz.0.905 Not tainted 6.12.0-rc3-syzkaller-00044-g2f87d0916ce0 #0
[  318.804475][T20724] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  318.807064][T20724] Call Trace:
[  318.807893][T20724]  <TASK>
[  318.808604][T20724]  dump_stack_lvl+0x16c/0x1f0
[  318.809781][T20724]  should_fail_ex+0x497/0x5b0
[  318.810972][T20724]  _copy_from_user+0x30/0xf0
[  318.812087][T20724]  copy_msghdr_from_user+0x99/0x160
[  318.813412][T20724]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  318.814865][T20724]  ? __pfx___lock_acquire+0x10/0x10
[  318.816121][T20724]  ___sys_sendmsg+0xff/0x1e0
[  318.817271][T20724]  ? __pfx____sys_sendmsg+0x10/0x10
[  318.818578][T20724]  ? lock_acquire+0x2f/0xb0
[  318.819743][T20724]  ? __fget_files+0x40/0x3f0
[  318.820905][T20724]  ? fdget+0x176/0x210
[  318.821931][T20724]  __sys_sendmsg+0x117/0x1f0
[  318.823050][T20724]  ? __pfx___sys_sendmsg+0x10/0x10
[  318.824308][T20724]  ? __fget_files+0x244/0x3f0
[  318.825499][T20724]  do_syscall_64+0xcd/0x250
[  318.826648][T20724]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  318.828102][T20724] RIP: 0033:0x7f980957dff9
[  318.829202][T20724] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  318.833993][T20724] RSP: 002b:00007f980a3ac038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  318.836063][T20724] RAX: ffffffffffffffda RBX: 00007f9809736058 RCX: 00007f980957dff9
[  318.838060][T20724] RDX: 0000000000000000 RSI: 0000000020000240 RDI: 0000000000000007
[  318.840015][T20724] RBP: 00007f980a3ac090 R08: 0000000000000000 R09: 0000000000000000
[  318.841947][T20724] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  318.843793][T20724] R13: 0000000000000000 R14: 00007f9809736058 R15: 00007ffe94af3de8
[  318.845786][T20724]  </TASK>
[  320.164606][ T5346] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  320.256238][T20751] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  320.679581][T20764] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  321.043694][   T39] kauditd_printk_skb: 36 callbacks suppressed
[  321.043705][   T39] audit: type=1400 audit(1729073285.614:2039): avc:  denied  { bind } for  pid=20793 comm="syz.3.920" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  321.070018][   T39] audit: type=1400 audit(1729073285.642:2040): avc:  denied  { execstack } for  pid=20793 comm="syz.3.920" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  321.072757][T20785] netlink: 16 bytes leftover after parsing attributes in process `syz.0.917'.
[  321.108838][T20800] FAULT_INJECTION: forcing a failure.
[  321.108838][T20800] name failslab, interval 1, probability 0, space 0, times 0
[  321.114372][T20800] CPU: 3 UID: 0 PID: 20800 Comm: syz.3.921 Not tainted 6.12.0-rc3-syzkaller-00044-g2f87d0916ce0 #0
[  321.117242][T20800] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  321.120054][T20800] Call Trace:
[  321.121006][T20800]  <TASK>
[  321.121805][T20800]  dump_stack_lvl+0x16c/0x1f0
[  321.123085][T20800]  should_fail_ex+0x497/0x5b0
[  321.124283][T20800]  ? fs_reclaim_acquire+0xae/0x150
[  321.125563][T20800]  should_failslab+0xc2/0x120
[  321.126756][T20800]  __kmalloc_cache_noprof+0x6b/0x300
[  321.128113][T20800]  ? alloc_fs_context+0x57/0x9c0
[  321.129381][T20800]  alloc_fs_context+0x57/0x9c0
[  321.130648][T20800]  path_mount+0xb08/0x1f20
[  321.131860][T20800]  ? kmem_cache_free+0x152/0x4b0
[  321.133121][T20800]  ? __pfx_path_mount+0x10/0x10
[  321.134425][T20800]  ? putname+0x12e/0x170
[  321.135530][T20800]  __x64_sys_mount+0x294/0x320
[  321.136778][T20800]  ? __pfx___x64_sys_mount+0x10/0x10
[  321.138304][T20800]  do_syscall_64+0xcd/0x250
[  321.139623][T20800]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  321.141140][T20800] RIP: 0033:0x7f48aa37dff9
[  321.142320][T20800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  321.147455][T20800] RSP: 002b:00007f48ab1d9038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  321.149665][T20800] RAX: ffffffffffffffda RBX: 00007f48aa535f80 RCX: 00007f48aa37dff9
[  321.151768][T20800] RDX: 00000000200000c0 RSI: 0000000020000080 RDI: 0000000000000000
[  321.153696][T20800] RBP: 00007f48ab1d9090 R08: 0000000020001340 R09: 0000000000000000
[  321.155734][T20800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  321.157881][T20800] R13: 0000000000000000 R14: 00007f48aa535f80 R15: 00007ffe33a00798
[  321.159948][T20800]  </TASK>
[  321.267319][   T39] audit: type=1400 audit(1729073285.839:2041): avc:  denied  { write } for  pid=20802 comm="syz.3.922" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  321.273122][   T39] audit: type=1400 audit(1729073285.839:2042): avc:  denied  { read } for  pid=20802 comm="syz.3.922" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1
[  321.960028][   T39] audit: type=1400 audit(1729073286.475:2043): avc:  denied  { write } for  pid=20822 comm="syz.2.924" name="cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  321.968438][   T39] audit: type=1400 audit(1729073286.475:2044): avc:  denied  { open } for  pid=20822 comm="syz.2.924" path="/dev/cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1
[  322.017964][T20838] tmpfs: Unknown parameter 'usrquotaº÷eÄï½®øòz40�Žb”Ü)Hú—K^6ˆU'
[  322.026218][   T39] audit: type=1400 audit(1729073286.550:2045): avc:  denied  { read } for  pid=20822 comm="syz.2.924" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  322.285730][   T39] audit: type=1400 audit(1729073286.784:2046): avc:  denied  { create } for  pid=20848 comm="syz.3.929" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  322.293445][   T39] audit: type=1400 audit(1729073286.793:2047): avc:  denied  { mounton } for  pid=20848 comm="syz.3.929" path="/83/file0" dev="tmpfs" ino=496 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  322.300912][T20849] syz.3.929: attempt to access beyond end of device
[  322.300912][T20849] nbd3: rw=0, sector=64, nr_sectors = 1 limit=0
[  322.305559][T20849] syz.3.929: attempt to access beyond end of device
[  322.305559][T20849] nbd3: rw=0, sector=256, nr_sectors = 1 limit=0
[  322.309110][T20849] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[  322.312758][T20849] syz.3.929: attempt to access beyond end of device
[  322.312758][T20849] nbd3: rw=0, sector=512, nr_sectors = 1 limit=0
[  322.316879][T20849] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[  322.319311][T20849] UDF-fs: warning (device nbd3): udf_load_vrs: No anchor found
[  322.321242][T20849] UDF-fs: Scanning with blocksize 512 failed
[  322.323507][T20849] syz.3.929: attempt to access beyond end of device
[  322.323507][T20849] nbd3: rw=0, sector=64, nr_sectors = 2 limit=0
[  322.327149][T20849] syz.3.929: attempt to access beyond end of device
[  322.327149][T20849] nbd3: rw=0, sector=512, nr_sectors = 2 limit=0
[  322.330353][T20849] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[  322.332739][T20849] syz.3.929: attempt to access beyond end of device
[  322.332739][T20849] nbd3: rw=0, sector=1024, nr_sectors = 2 limit=0
[  322.336122][T20849] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[  322.338501][T20849] UDF-fs: warning (device nbd3): udf_load_vrs: No anchor found
[  322.340717][T20849] UDF-fs: Scanning with blocksize 1024 failed
[  322.342737][T20849] syz.3.929: attempt to access beyond end of device
[  322.342737][T20849] nbd3: rw=0, sector=64, nr_sectors = 4 limit=0
[  322.346575][T20849] syz.3.929: attempt to access beyond end of device
[  322.346575][T20849] nbd3: rw=0, sector=1024, nr_sectors = 4 limit=0
[  322.349879][T20849] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[  322.352348][T20849] syz.3.929: attempt to access beyond end of device
[  322.352348][T20849] nbd3: rw=0, sector=2048, nr_sectors = 4 limit=0
[  322.356349][T20849] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[  322.358834][T20849] UDF-fs: warning (device nbd3): udf_load_vrs: No anchor found
[  322.360754][T20849] UDF-fs: Scanning with blocksize 2048 failed
[  322.362498][T20849] syz.3.929: attempt to access beyond end of device
[  322.362498][T20849] nbd3: rw=0, sector=64, nr_sectors = 8 limit=0
[  322.365731][T20849] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[  322.368792][T20849] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[  322.371146][T20849] UDF-fs: warning (device nbd3): udf_load_vrs: No anchor found
[  322.373123][T20849] UDF-fs: Scanning with blocksize 4096 failed
[  322.374766][T20849] UDF-fs: warning (device nbd3): udf_fill_super: No partition found (1)
[  322.412741][   T39] audit: type=1400 audit(1729073286.905:2048): avc:  denied  { read } for  pid=20848 comm="syz.3.929" dev="sockfs" ino=30832 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[  322.421940][T20849] ALSA: mixer_oss: invalid OSS volume 'DIGIT'
[  323.831758][ T4797] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  323.993832][ T4797] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  323.997199][ T4797] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  324.006212][T20864] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  324.058905][T20912] netlink: 16 bytes leftover after parsing attributes in process `syz.2.934'.
[  324.230972][ T4797] usb 5-1: New USB device found, idVendor=054c, idProduct=03d5, bcdDevice= 0.10
[  324.234127][ T4797] usb 5-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[  324.236913][ T4797] usb 5-1: Manufacturer: syz
[  324.257999][ T4797] usb 5-1: config 0 descriptor??
[  324.350145][T20917] Bluetooth: hci0: Opcode 0x0c03 failed: -112
[  325.437118][T20932] FAULT_INJECTION: forcing a failure.
[  325.437118][T20932] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  325.442039][T20932] CPU: 3 UID: 0 PID: 20932 Comm: syz.3.939 Not tainted 6.12.0-rc3-syzkaller-00044-g2f87d0916ce0 #0
[  325.446117][T20932] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  325.450175][T20932] Call Trace:
[  325.451483][T20932]  <TASK>
[  325.452652][T20932]  dump_stack_lvl+0x16c/0x1f0
[  325.454536][T20932]  should_fail_ex+0x497/0x5b0
[  325.456396][T20932]  _copy_from_user+0x30/0xf0
[  325.458275][T20932]  copy_msghdr_from_user+0x99/0x160
[  325.460341][T20932]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  325.462634][T20932]  ? kfree+0x274/0x4b0
[  325.464204][T20932]  ? __pfx___lock_acquire+0x10/0x10
[  325.466188][T20932]  ___sys_recvmsg+0xdc/0x1a0
[  325.468031][T20932]  ? __pfx____sys_recvmsg+0x10/0x10
[  325.470153][T20932]  ? find_held_lock+0x2d/0x110
[  325.472021][T20932]  ? lock_acquire+0x2f/0xb0
[  325.473863][T20932]  ? __pfx___might_resched+0x10/0x10
[  325.475378][T20932]  ? __might_fault+0xe3/0x190
[  325.476695][T20932]  do_recvmmsg+0x2ba/0x750
[  325.477952][T20932]  ? __pfx_do_recvmmsg+0x10/0x10
[  325.479309][T20932]  ? vfs_write+0x14d/0x1140
[  325.480591][T20932]  ? __mutex_unlock_slowpath+0x164/0x650
[  325.482214][T20932]  ? __fget_files+0x244/0x3f0
[  325.483598][T20932]  __x64_sys_recvmmsg+0x239/0x290
[  325.485043][T20932]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  325.486590][T20932]  do_syscall_64+0xcd/0x250
[  325.487847][T20932]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  325.489465][T20932] RIP: 0033:0x7f48aa37dff9
[  325.490713][T20932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  325.496124][T20932] RSP: 002b:00007f48ab1b8038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  325.498403][T20932] RAX: ffffffffffffffda RBX: 00007f48aa536058 RCX: 00007f48aa37dff9
[  325.500569][T20932] RDX: 0000000000010106 RSI: 00000000200000c0 RDI: 0000000000000003
[  325.502775][T20932] RBP: 00007f48ab1b8090 R08: 0000000000000000 R09: 0000000000000000
[  325.505027][T20932] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002
[  325.507182][T20932] R13: 0000000000000000 R14: 00007f48aa536058 R15: 00007ffe33a00798
[  325.509306][T20932]  </TASK>
[  326.161364][T20948] netlink: 4 bytes leftover after parsing attributes in process `syz.2.951'.
[  326.389143][T11738] usb 5-1: USB disconnect, device number 15
[  326.568305][ T5346] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  326.729386][   T39] kauditd_printk_skb: 4 callbacks suppressed
[  326.729402][   T39] audit: type=1400 audit(1729073290.937:2053): avc:  denied  { mount } for  pid=20951 comm="syz.2.944" name="/" dev="gadgetfs" ino=30238 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  327.053148][   T39] audit: type=1326 audit(1729073291.245:2054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20972 comm="syz.1.946" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbde9f7dff9 code=0x7ffc0000
[  327.061232][   T39] audit: type=1326 audit(1729073291.245:2055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20972 comm="syz.1.946" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbde9f7dff9 code=0x7ffc0000
[  327.095521][   T39] audit: type=1326 audit(1729073291.255:2056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20972 comm="syz.1.946" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fbde9f7dff9 code=0x7ffc0000
[  327.104556][   T39] audit: type=1326 audit(1729073291.255:2057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20972 comm="syz.1.946" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbde9f7dff9 code=0x7ffc0000
[  327.113071][   T39] audit: type=1326 audit(1729073291.255:2058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20972 comm="syz.1.946" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbde9f7dff9 code=0x7ffc0000
[  327.122563][   T39] audit: type=1326 audit(1729073291.255:2059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20972 comm="syz.1.946" exe="/syz-executor" sig=0 arch=c000003e syscall=327 compat=0 ip=0x7fbde9f7dff9 code=0x7ffc0000
[  327.132283][   T39] audit: type=1326 audit(1729073291.255:2060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20972 comm="syz.1.946" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbde9f7dff9 code=0x7ffc0000
[  327.140837][   T39] audit: type=1326 audit(1729073291.255:2061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20972 comm="syz.1.946" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbde9f7dff9 code=0x7ffc0000
[  327.149473][   T39] audit: type=1326 audit(1729073291.255:2062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20972 comm="syz.1.946" exe="/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7fbde9f7dff9 code=0x7ffc0000
[  327.369631][T20966] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  327.700434][T21005] kAFS: No cell specified
[  327.939820][T21011] overlayfs: unescaped trailing colons in lowerdir mount option.
[  328.350060][T21022] bio_check_eod: 2 callbacks suppressed
[  328.350075][T21022] syz.0.958: attempt to access beyond end of device
[  328.350075][T21022] nbd0: rw=0, sector=64, nr_sectors = 1 limit=0
[  328.359332][T21022] syz.0.958: attempt to access beyond end of device
[  328.359332][T21022] nbd0: rw=0, sector=256, nr_sectors = 1 limit=0
[  328.362765][T21022] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256
[  328.365830][T21022] syz.0.958: attempt to access beyond end of device
[  328.365830][T21022] nbd0: rw=0, sector=512, nr_sectors = 1 limit=0
[  328.369539][T21022] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512
[  328.372229][T21022] UDF-fs: warning (device nbd0): udf_load_vrs: No anchor found
[  328.374346][T21022] UDF-fs: Scanning with blocksize 512 failed
[  328.377954][T21022] syz.0.958: attempt to access beyond end of device
[  328.377954][T21022] nbd0: rw=0, sector=64, nr_sectors = 2 limit=0
[  328.382301][T21022] syz.0.958: attempt to access beyond end of device
[  328.382301][T21022] nbd0: rw=0, sector=512, nr_sectors = 2 limit=0
[  328.387067][T21022] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256
[  328.390470][T21022] syz.0.958: attempt to access beyond end of device
[  328.390470][T21022] nbd0: rw=0, sector=1024, nr_sectors = 2 limit=0
[  328.394852][T21022] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512
[  328.398415][T21022] UDF-fs: warning (device nbd0): udf_load_vrs: No anchor found
[  328.400415][T21022] UDF-fs: Scanning with blocksize 1024 failed
[  328.402390][T21022] syz.0.958: attempt to access beyond end of device
[  328.402390][T21022] nbd0: rw=0, sector=64, nr_sectors = 4 limit=0
[  328.406109][T21022] syz.0.958: attempt to access beyond end of device
[  328.406109][T21022] nbd0: rw=0, sector=1024, nr_sectors = 4 limit=0
[  328.417712][T21022] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256
[  328.417846][T21022] syz.0.958: attempt to access beyond end of device
[  328.417846][T21022] nbd0: rw=0, sector=2048, nr_sectors = 4 limit=0
[  328.424753][T21022] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512
[  328.424767][T21022] UDF-fs: warning (device nbd0): udf_load_vrs: No anchor found
[  328.424774][T21022] UDF-fs: Scanning with blocksize 2048 failed
[  328.431314][T21022] syz.0.958: attempt to access beyond end of device
[  328.431314][T21022] nbd0: rw=0, sector=64, nr_sectors = 8 limit=0
[  328.431389][T21022] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256
[  328.431439][T21022] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512
[  328.431449][T21022] UDF-fs: warning (device nbd0): udf_load_vrs: No anchor found
[  328.443756][T21022] UDF-fs: Scanning with blocksize 4096 failed
[  328.443765][T21022] UDF-fs: warning (device nbd0): udf_fill_super: No partition found (1)
[  328.458141][T21029] FAULT_INJECTION: forcing a failure.
[  328.458141][T21029] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  328.464494][T21029] CPU: 0 UID: 0 PID: 21029 Comm: syz.1.961 Not tainted 6.12.0-rc3-syzkaller-00044-g2f87d0916ce0 #0
[  328.464533][T21029] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  328.464544][T21029] Call Trace:
[  328.464558][T21029]  <TASK>
[  328.464565][T21029]  dump_stack_lvl+0x16c/0x1f0
[  328.464594][T21029]  should_fail_ex+0x497/0x5b0
[  328.464613][T21029]  _copy_to_user+0x30/0xc0
[  328.464632][T21029]  simple_read_from_buffer+0xd0/0x160
[  328.464649][T21029]  proc_fail_nth_read+0x198/0x270
[  328.464662][T21029]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  328.464674][T21029]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  328.464684][T21029]  vfs_read+0x1ce/0xbd0
[  328.464698][T21029]  ? __fget_files+0x23a/0x3f0
[  328.464712][T21029]  ? fdget_pos+0x24c/0x360
[  328.464724][T21029]  ? __pfx_lock_release+0x10/0x10
[  328.464734][T21029]  ? trace_lock_acquire+0x14a/0x1d0
[  328.464746][T21029]  ? __pfx_vfs_read+0x10/0x10
[  328.464759][T21029]  ? __pfx___mutex_lock+0x10/0x10
[  328.464776][T21029]  ? __fget_files+0x244/0x3f0
[  328.464792][T21029]  ksys_read+0x12f/0x260
[  328.464805][T21029]  ? __pfx_ksys_read+0x10/0x10
[  328.464822][T21029]  do_syscall_64+0xcd/0x250
[  328.464836][T21029]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  328.464850][T21029] RIP: 0033:0x7fbde9f7ca3c
[  328.464859][T21029] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  328.464868][T21029] RSP: 002b:00007fbdead37030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  328.464879][T21029] RAX: ffffffffffffffda RBX: 00007fbdea136058 RCX: 00007fbde9f7ca3c
[  328.464886][T21029] RDX: 000000000000000f RSI: 00007fbdead370a0 RDI: 0000000000000005
[  328.464892][T21029] RBP: 00007fbdead37090 R08: 0000000000000000 R09: 0000000000000000
[  328.464898][T21029] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  328.464904][T21029] R13: 0000000000000000 R14: 00007fbdea136058 R15: 00007ffedd9462e8
[  328.464916][T21029]  </TASK>
[  328.467118][T21022] ALSA: mixer_oss: invalid OSS volume 'DIGIT'
[  328.533100][T21032] netlink: 200 bytes leftover after parsing attributes in process `syz.1.962'.
[  328.819326][T21045] Bluetooth: hci0: Opcode 0x0c03 failed: -112
[  329.102977][T21053] FAULT_INJECTION: forcing a failure.
[  329.102977][T21053] name failslab, interval 1, probability 0, space 0, times 0
[  329.103045][T21053] CPU: 2 UID: 0 PID: 21053 Comm: syz.2.965 Not tainted 6.12.0-rc3-syzkaller-00044-g2f87d0916ce0 #0
[  329.103058][T21053] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  329.103064][T21053] Call Trace:
[  329.103068][T21053]  <TASK>
[  329.103073][T21053]  dump_stack_lvl+0x16c/0x1f0
[  329.103091][T21053]  should_fail_ex+0x497/0x5b0
[  329.103101][T21053]  ? fs_reclaim_acquire+0xae/0x150
[  329.103113][T21053]  should_failslab+0xc2/0x120
[  329.103126][T21053]  __kmalloc_noprof+0xcb/0x400
[  329.103140][T21053]  drm_atomic_state_init+0xe4/0x320
[  329.103155][T21053]  ? __kasan_kmalloc+0xaa/0xb0
[  329.103166][T21053]  drm_atomic_state_alloc+0xd3/0x120
[  329.103181][T21053]  drm_client_modeset_commit_atomic+0xd8/0x800
[  329.103194][T21053]  ? drm_client_modeset_commit_locked+0x4c/0x580
[  329.103209][T21053]  ? rcu_is_watching+0x12/0xc0
[  329.103222][T21053]  ? trace_contention_end+0xea/0x140
[  329.103234][T21053]  ? __pfx_drm_client_modeset_commit_atomic+0x10/0x10
[  329.103253][T21053]  ? __mutex_lock+0x1a6/0x9c0
[  329.103266][T21053]  ? __mutex_lock+0x1a6/0x9c0
[  329.103285][T21053]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  329.103303][T21053]  drm_client_modeset_commit_locked+0x14d/0x580
[  329.103319][T21053]  drm_fb_helper_pan_display+0x2a5/0x990
[  329.103332][T21053]  ? enable_work+0x246/0x340
[  329.103344][T21053]  ? __pfx_enable_work+0x10/0x10
[  329.103356][T21053]  fb_pan_display+0x477/0x7d0
[  329.103374][T21053]  ? __pfx_drm_fb_helper_pan_display+0x10/0x10
[  329.103398][T21053]  bit_update_start+0x49/0x1f0
[  329.103419][T21053]  fbcon_switch+0xc11/0x14f0
[  329.103440][T21053]  ? __pfx_fbcon_switch+0x10/0x10
[  329.103459][T21053]  ? __pfx_bit_cursor+0x10/0x10
[  329.103470][T21053]  ? fbcon_cursor+0x409/0x5f0
[  329.103488][T21053]  ? __pfx_lock_release+0x10/0x10
[  329.103508][T21053]  csi_J+0x868/0xad0
[  329.103531][T21053]  do_con_write+0x3b83/0x7bb0
[  329.103559][T21053]  ? __pfx_do_con_write+0x10/0x10
[  329.103572][T21053]  ? __pfx___mutex_lock+0x10/0x10
[  329.103596][T21053]  ? con_write+0x81/0xb0
[  329.103613][T21053]  con_write+0x23/0xb0
[  329.103626][T21053]  n_tty_write+0x419/0x1140
[  329.103651][T21053]  ? __pfx_n_tty_write+0x10/0x10
[  329.103665][T21053]  ? __virt_addr_valid+0x1a4/0x590
[  329.103683][T21053]  ? __pfx_woken_wake_function+0x10/0x10
[  329.103702][T21053]  ? __virt_addr_valid+0x5e/0x590
[  329.103719][T21053]  ? __phys_addr_symbol+0x30/0x80
[  329.103738][T21053]  ? __check_object_size+0x488/0x710
[  329.103755][T21053]  ? __pfx_n_tty_write+0x10/0x10
[  329.103772][T21053]  file_tty_write.constprop.0+0x506/0x9a0
[  329.103802][T21053]  vfs_write+0x6b5/0x1140
[  329.103842][T21053]  ? __pfx_tty_write+0x10/0x10
[  329.103862][T21053]  ? trace_lock_acquire+0x14a/0x1d0
[  329.103881][T21053]  ? __pfx_vfs_write+0x10/0x10
[  329.103902][T21053]  ? __fget_files+0x40/0x3f0
[  329.103933][T21053]  ksys_write+0x12f/0x260
[  329.103953][T21053]  ? __pfx_ksys_write+0x10/0x10
[  329.103984][T21053]  do_syscall_64+0xcd/0x250
[  329.104012][T21053]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  329.104034][T21053] RIP: 0033:0x7f449557dff9
[  329.104049][T21053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  329.104063][T21053] RSP: 002b:00007f4496403038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  329.104081][T21053] RAX: ffffffffffffffda RBX: 00007f4495735f80 RCX: 00007f449557dff9
[  329.104091][T21053] RDX: 0000000000001006 RSI: 0000000020002380 RDI: 0000000000000005
[  329.104101][T21053] RBP: 00007f4496403090 R08: 0000000000000000 R09: 0000000000000000
[  329.104111][T21053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  329.104121][T21053] R13: 0000000000000000 R14: 00007f4495735f80 R15: 00007ffdfd59bf28
[  329.104143][T21053]  </TASK>
[  329.478205][T21073] netlink: 'syz.1.968': attribute type 20 has an invalid length.
[  329.509649][T21074] netlink: 4 bytes leftover after parsing attributes in process `syz.2.971'.
[  329.627520][T21087] bridge0: port 2(bridge_slave_1) entered disabled state
[  331.182360][T21118] FAULT_INJECTION: forcing a failure.
[  331.182360][T21118] name failslab, interval 1, probability 0, space 0, times 0
[  331.186230][T21118] CPU: 0 UID: 0 PID: 21118 Comm: syz.3.979 Not tainted 6.12.0-rc3-syzkaller-00044-g2f87d0916ce0 #0
[  331.186393][T21119] 9pnet_fd: Insufficient options for proto=fd
[  331.189149][T21118] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  331.189180][T21118] Call Trace:
[  331.189186][T21118]  <TASK>
[  331.189191][T21118]  dump_stack_lvl+0x16c/0x1f0
[  331.189210][T21118]  should_fail_ex+0x497/0x5b0
[  331.189221][T21118]  ? stack_depot_save_flags+0x28/0x8f0
[  331.189232][T21118]  should_failslab+0xc2/0x120
[  331.189245][T21118]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  331.189256][T21118]  ? radix_tree_node_alloc.constprop.0+0x7c/0x350
[  331.189269][T21118]  ? __lock_acquire+0x163e/0x3ce0
[  331.189292][T21118]  radix_tree_node_alloc.constprop.0+0x7c/0x350
[  331.189306][T21118]  idr_get_free+0x528/0xa40
[  331.189323][T21118]  idr_alloc_u32+0x191/0x2f0
[  331.189337][T21118]  ? __pfx_idr_alloc_u32+0x10/0x10
[  331.189350][T21118]  ? lock_acquire.part.0+0x11b/0x380
[  331.189363][T21118]  idr_alloc_cyclic+0x10c/0x230
[  331.189398][T21118]  ? __pfx_idr_alloc_cyclic+0x10/0x10
[  331.189413][T21118]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  331.189426][T21118]  ? lock_acquire+0x2f/0xb0
[  331.189435][T21118]  ? btf_new_fd+0x36c/0x5370
[  331.189449][T21118]  btf_new_fd+0x38b/0x5370
[  331.189460][T21118]  ? avc_has_perm_noaudit+0x143/0x3a0
[  331.191542][ T5346] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  331.194350][T21118]  ? __pfx_btf_new_fd+0x10/0x10
[  331.229980][T21118]  ? cap_capable+0x1cf/0x240
[  331.231194][T21118]  ? bpf_lsm_capable+0x9/0x10
[  331.232419][T21118]  ? security_capable+0x7e/0x260
[  331.233762][T21118]  ? ns_capable+0xd7/0x110
[  331.234930][T21118]  __sys_bpf+0x1747/0x49a0
[  331.236092][T21118]  ? ksys_write+0x21e/0x260
[  331.237334][T21118]  ? reacquire_held_locks+0x3f0/0x4c0
[  331.238735][T21118]  ? __pfx___sys_bpf+0x10/0x10
[  331.240121][T21118]  ? vfs_write+0x14d/0x1140
[  331.241626][T21118]  ? __mutex_unlock_slowpath+0x164/0x650
[  331.243085][T21118]  ? fput+0x30/0x390
[  331.244114][T21118]  ? ksys_write+0x1ad/0x260
[  331.245484][T21118]  ? __pfx_ksys_write+0x10/0x10
[  331.246968][T21118]  __x64_sys_bpf+0x78/0xc0
[  331.248443][T21118]  ? lockdep_hardirqs_on+0x7c/0x110
[  331.250240][T21118]  do_syscall_64+0xcd/0x250
[  331.251895][T21118]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  331.254088][T21118] RIP: 0033:0x7f48aa37dff9
[  331.255742][T21118] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  331.261205][T21118] RSP: 002b:00007f48ab1d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  331.263518][T21118] RAX: ffffffffffffffda RBX: 00007f48aa535f80 RCX: 00007f48aa37dff9
[  331.265898][T21118] RDX: 0000000000000028 RSI: 0000000020000200 RDI: 0000000000000012
[  331.268453][T21118] RBP: 00007f48ab1d9090 R08: 0000000000000000 R09: 0000000000000000
[  331.270536][T21118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  331.272554][T21118] R13: 0000000000000001 R14: 00007f48aa535f80 R15: 00007ffe33a00798
[  331.274600][T21118]  </TASK>
[  331.275807][T21102] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  331.451994][T21124] netlink: 'syz.1.981': attribute type 10 has an invalid length.
[  331.455279][T21124] macvlan0: entered promiscuous mode
[  331.456689][T21124] macvlan0: entered allmulticast mode
[  331.460180][T21124] veth1_vlan: entered allmulticast mode
[  331.464278][T21124] bond0: (slave macvlan0): Enslaving as an active interface with an up link
[  332.749564][ T5346] block nbd0: Receive control failed (result -32)
[  332.761031][T21146] block nbd0: shutting down sockets
[  332.839804][   T39] kauditd_printk_skb: 14 callbacks suppressed
[  332.839815][   T39] audit: type=1400 audit(1729073296.652:2077): avc:  denied  { connect } for  pid=21176 comm="syz.0.991" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  332.852438][   T39] audit: type=1400 audit(1729073296.661:2078): avc:  denied  { setattr } for  pid=21176 comm="syz.0.991" name="ttynull" dev="devtmpfs" ino=628 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tty_device_t tclass=chr_file permissive=1
[  332.895617][T21179] overlayfs: unescaped trailing colons in lowerdir mount option.
[  333.474410][   T55] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  333.645411][   T55] usb 5-1: Using ep0 maxpacket: 32
[  333.648017][   T55] usb 5-1: New USB device found, idVendor=0b89, idProduct=0007, bcdDevice=ef.64
[  333.651850][   T55] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  333.656667][   T55] usb 5-1: config 0 descriptor??
[  333.661911][   T55] as10x_usb: device has been detected
[  333.663663][   T55] dvbdev: DVB: registering new adapter (nBox DVB-T Dongle)
[  333.680815][   T55] usb 5-1: DVB: registering adapter 1 frontend 0 (nBox DVB-T Dongle)...
[  333.690053][   T55] as10x_usb: error during firmware upload part1
[  333.692062][   T55] Registered device nBox DVB-T Dongle
[  333.925272][T21224] netlink: 24 bytes leftover after parsing attributes in process `syz.1.999'.
[  333.934154][   T63] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  334.083909][   T63] usb 7-1: device descriptor read/64, error -71
[  334.091926][T21187] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  334.097260][T21187] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  334.340335][   T63] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  334.479456][   T63] usb 7-1: device descriptor read/64, error -71
[  334.533169][T21187] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  334.536733][T21187] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  334.607778][   T63] usb usb7-port1: attempt power cycle
[  334.619474][ T1378] ieee802154 phy0 wpan0: encryption failed: -22
[  334.622501][ T1378] ieee802154 phy1 wpan1: encryption failed: -22
[  334.971162][   T63] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  335.005540][   T63] usb 7-1: device descriptor read/8, error -71
[  335.088086][T18822] usb 5-1: USB disconnect, device number 16
[  335.114122][T18822] Unregistered device nBox DVB-T Dongle
[  335.116414][T18822] as10x_usb: device has been disconnected
[  335.118634][   T39] audit: type=1400 audit(1729073298.785:2079): avc:  denied  { getopt } for  pid=21261 comm="syz.1.1005" lport=51 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  335.127388][T21263] FAULT_INJECTION: forcing a failure.
[  335.127388][T21263] name failslab, interval 1, probability 0, space 0, times 0
[  335.131895][T21263] CPU: 0 UID: 0 PID: 21263 Comm: syz.1.1005 Not tainted 6.12.0-rc3-syzkaller-00044-g2f87d0916ce0 #0
[  335.135491][T21263] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  335.139079][T21263] Call Trace:
[  335.140220][T21263]  <TASK>
[  335.141227][T21263]  dump_stack_lvl+0x16c/0x1f0
[  335.142838][T21263]  should_fail_ex+0x497/0x5b0
[  335.144410][T21263]  ? fs_reclaim_acquire+0xae/0x150
[  335.146151][T21263]  should_failslab+0xc2/0x120
[  335.147748][T21263]  __kmalloc_cache_node_noprof+0x6e/0x350
[  335.149683][T21263]  ? __get_vm_area_node+0xe1/0x2d0
[  335.151412][T21263]  __get_vm_area_node+0xe1/0x2d0
[  335.153080][T21263]  __vmalloc_node_range_noprof+0x26a/0x15a0
[  335.155077][T21263]  ? ip_set_sockfn_get+0x18f/0xd10
[  335.156809][T21263]  ? avc_has_perm_noaudit+0x143/0x3a0
[  335.158625][T21263]  ? cred_has_capability.isra.0+0x192/0x2f0
[  335.160635][T21263]  ? ip_set_sockfn_get+0x18f/0xd10
[  335.162390][T21263]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  335.164532][T21263]  ? __pfx_lock_release+0x10/0x10
[  335.166255][T21263]  ? trace_lock_acquire+0x14a/0x1d0
[  335.168028][T21263]  ? cap_capable+0x1cf/0x240
[  335.169624][T21263]  ? ip_set_sockfn_get+0x18f/0xd10
[  335.171369][T21263]  vmalloc_noprof+0x6b/0x90
[  335.172912][T21263]  ? ip_set_sockfn_get+0x18f/0xd10
[  335.174676][T21263]  ip_set_sockfn_get+0x18f/0xd10
[  335.176271][T21263]  ? __pfx_lock_release+0x10/0x10
[  335.177938][T21263]  ? __pfx_ip_set_sockfn_get+0x10/0x10
[  335.179635][T21263]  ? nf_sockopt_find.constprop.0+0x221/0x290
[  335.181539][T21263]  nf_getsockopt+0x79/0xe0
[  335.183089][T21263]  ip_getsockopt+0x18e/0x1e0
[  335.184695][T21263]  ? __pfx_ip_getsockopt+0x10/0x10
[  335.186439][T21263]  ? __might_fault+0xe3/0x190
[  335.188042][T21263]  ? __might_fault+0xe3/0x190
[  335.189654][T21263]  raw_getsockopt+0x4d/0x1e0
[  335.191235][T21263]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  335.193238][T21263]  do_sock_getsockopt+0x3fe/0x800
[  335.194963][T21263]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  335.196825][T21263]  ? __fget_files+0x244/0x3f0
[  335.198467][T21263]  __sys_getsockopt+0x1a1/0x270
[  335.200119][T21263]  ? __pfx___sys_getsockopt+0x10/0x10
[  335.201940][T21263]  ? fput+0x30/0x390
[  335.203284][T21263]  ? ksys_write+0x1ad/0x260
[  335.204844][T21263]  ? __pfx_ksys_write+0x10/0x10
[  335.206519][T21263]  __x64_sys_getsockopt+0xbd/0x160
[  335.208270][T21263]  ? do_syscall_64+0x91/0x250
[  335.209889][T21263]  ? lockdep_hardirqs_on+0x7c/0x110
[  335.211660][T21263]  do_syscall_64+0xcd/0x250
[  335.213227][T21263]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.215224][T21263] RIP: 0033:0x7fbde9f7dff9
[  335.216726][T21263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  335.223099][T21263] RSP: 002b:00007fbdead58038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  335.225877][T21263] RAX: ffffffffffffffda RBX: 00007fbdea135f80 RCX: 00007fbde9f7dff9
[  335.228534][T21263] RDX: 0000000000000053 RSI: 0000000000000000 RDI: 0000000000000005
[  335.231182][T21263] RBP: 00007fbdead58090 R08: 0000000020000040 R09: 0000000000000000
[  335.233802][T21263] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[  335.236472][T21263] R13: 0000000000000000 R14: 00007fbdea135f80 R15: 00007ffedd9462e8
[  335.239183][T21263]  </TASK>
[  335.241954][T21263] syz.1.1005: vmalloc error: size 40, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[  335.248276][T21263] CPU: 0 UID: 0 PID: 21263 Comm: syz.1.1005 Not tainted 6.12.0-rc3-syzkaller-00044-g2f87d0916ce0 #0
[  335.251898][T21263] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  335.255570][T21263] Call Trace:
[  335.256723][T21263]  <TASK>
[  335.257751][T21263]  dump_stack_lvl+0x16c/0x1f0
[  335.259379][T21263]  warn_alloc+0x24d/0x3a0
[  335.260878][T21263]  ? __pfx_warn_alloc+0x10/0x10
[  335.262559][T21263]  ? rcu_is_watching+0x12/0xc0
[  335.264193][T21263]  ? trace_kmalloc+0x2d/0xe0
[  335.265794][T21263]  ? __kasan_kmalloc+0x8a/0xb0
[  335.267412][T21263]  ? __get_vm_area_node+0x1bc/0x2d0
[  335.269168][T21263]  __vmalloc_node_range_noprof+0xd27/0x15a0
[  335.271167][T21263]  ? avc_has_perm_noaudit+0x143/0x3a0
[  335.273113][T21263]  ? cred_has_capability.isra.0+0x192/0x2f0
[  335.275162][T21263]  ? ip_set_sockfn_get+0x18f/0xd10
[  335.276933][T21263]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  335.279109][T21263]  ? __pfx_lock_release+0x10/0x10
[  335.280819][T21263]  ? trace_lock_acquire+0x14a/0x1d0
[  335.282634][T21263]  ? cap_capable+0x1cf/0x240
[  335.284227][T21263]  ? ip_set_sockfn_get+0x18f/0xd10
[  335.286007][T21263]  vmalloc_noprof+0x6b/0x90
[  335.287573][T21263]  ? ip_set_sockfn_get+0x18f/0xd10
[  335.289357][T21263]  ip_set_sockfn_get+0x18f/0xd10
[  335.291054][T21263]  ? __pfx_lock_release+0x10/0x10
[  335.292793][T21263]  ? __pfx_ip_set_sockfn_get+0x10/0x10
[  335.294745][T21263]  ? nf_sockopt_find.constprop.0+0x221/0x290
[  335.296815][T21263]  nf_getsockopt+0x79/0xe0
[  335.298400][T21263]  ip_getsockopt+0x18e/0x1e0
[  335.300020][T21263]  ? __pfx_ip_getsockopt+0x10/0x10
[  335.301949][T21263]  ? __might_fault+0xe3/0x190
[  335.303596][T21263]  ? __might_fault+0xe3/0x190
[  335.305197][T21263]  raw_getsockopt+0x4d/0x1e0
[  335.306790][T21263]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  335.308822][T21263]  do_sock_getsockopt+0x3fe/0x800
[  335.310542][T21263]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  335.312408][T21263]  ? __fget_files+0x244/0x3f0
[  335.314181][T21263]  __sys_getsockopt+0x1a1/0x270
[  335.316038][T21263]  ? __pfx___sys_getsockopt+0x10/0x10
[  335.317882][T21263]  ? fput+0x30/0x390
[  335.319225][T21263]  ? ksys_write+0x1ad/0x260
[  335.320787][T21263]  ? __pfx_ksys_write+0x10/0x10
[  335.322474][T21263]  __x64_sys_getsockopt+0xbd/0x160
[  335.324211][T21263]  ? do_syscall_64+0x91/0x250
[  335.325816][T21263]  ? lockdep_hardirqs_on+0x7c/0x110
[  335.327579][T21263]  do_syscall_64+0xcd/0x250
[  335.329142][T21263]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.331172][T21263] RIP: 0033:0x7fbde9f7dff9
[  335.332684][T21263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  335.339187][T21263] RSP: 002b:00007fbdead58038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  335.342038][T21263] RAX: ffffffffffffffda RBX: 00007fbdea135f80 RCX: 00007fbde9f7dff9
[  335.344706][T21263] RDX: 0000000000000053 RSI: 0000000000000000 RDI: 0000000000000005
[  335.347341][T21263] RBP: 00007fbdead58090 R08: 0000000020000040 R09: 0000000000000000
[  335.350104][T21263] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[  335.352855][T21263] R13: 0000000000000000 R14: 00007fbdea135f80 R15: 00007ffedd9462e8
[  335.355565][T21263]  </TASK>
[  335.357259][T21263] Mem-Info:
[  335.358478][T21263] active_anon:9112 inactive_anon:4743 isolated_anon:0
[  335.358478][T21263]  active_file:8836 inactive_file:46602 isolated_file:0
[  335.358478][T21263]  unevictable:1768 dirty:506 writeback:0
[  335.358478][T21263]  slab_reclaimable:6537 slab_unreclaimable:75081
[  335.358478][T21263]  mapped:17813 shmem:6379 pagetables:759
[  335.358478][T21263]  sec_pagetables:313 bounce:0
[  335.358478][T21263]  kernel_misc_reclaimable:0
[  335.358478][T21263]  free:478428 free_pcp:3175 free_cma:0
[  335.373347][T21263] Node 0 active_anon:36448kB inactive_anon:18972kB active_file:35344kB inactive_file:186336kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:71252kB dirty:2024kB writeback:0kB shmem:21980kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11408kB pagetables:3036kB sec_pagetables:1252kB all_unreclaimable? no
[  335.384813][T21263] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:112kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  335.395231][   T63] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  335.398483][T21263] Node 0 DMA free:14428kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  335.417525][T21263] lowmem_reserve[]: 0 1214 0 0 0
[  335.418869][T21263] Node 0 DMA32 free:290820kB boost:16384kB min:44020kB low:50928kB high:57836kB reserved_highatomic:0KB active_anon:36508kB inactive_anon:18972kB active_file:35344kB inactive_file:186336kB unevictable:3536kB writepending:2024kB present:2080628kB managed:1272192kB mlocked:0kB bounce:0kB free_pcp:12100kB local_pcp:9856kB free_cma:0kB
[  335.420620][   T63] usb 7-1: device descriptor read/8, error -71
[  335.428574][T21263] lowmem_reserve[]: 0 0 0 0 0
[  335.430116][T21263] Node 1 Normal free:1608888kB boost:0kB min:39600kB low:49500kB high:59400kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:3536kB writepending:0kB present:2097152kB managed:1781924kB mlocked:0kB bounce:0kB free_pcp:80kB local_pcp:0kB free_cma:0kB
[  335.437586][T21263] lowmem_reserve[]: 0 0 0 0 0
[  335.438802][T21263] Node 0 DMA: 71*4kB (UM) 58*8kB (UM) 55*16kB (UM) 34*32kB (UM) 21*64kB (UM) 5*128kB (UM) 2*256kB (UM) 2*512kB (UM) 2*1024kB (M) 3*2048kB (M) 0*4096kB = 14428kB
[  335.444987][T21263] Node 0 DMA32: 1722*4kB (UM) 1196*8kB (U) 778*16kB (UME) 721*32kB (UME) 914*64kB (UME) 392*128kB (UME) 117*256kB (UME) 71*512kB (UM) 28*1024kB (M) 11*2048kB (M) 2*4096kB (UM) = 286344kB
[  335.449956][T21263] Node 1 Normal: 140*4kB (UME) 95*8kB (UME) 75*16kB (UME) 83*32kB (UME) 80*64kB (UME) 49*128kB (UME) 28*256kB (UE) 26*512kB (UME) 15*1024kB (UE) 10*2048kB (UM) 375*4096kB (UM) = 1608888kB
[  335.454920][T21263] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  335.457320][T21263] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  335.459788][T21263] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  335.462244][T21263] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  335.464807][T21263] 61819 total pagecache pages
[  335.466371][T21273] netlink: 'syz.0.1004': attribute type 20 has an invalid length.
[  335.470497][T21263] 0 pages in swap cache
[  335.471615][T21263] Free swap  = 124444kB
[  335.474633][T21263] Total swap = 124996kB
[  335.478587][T21263] 1048443 pages RAM
[  335.479623][T21263] 0 pages HighMem/MovableOnly
[  335.480841][T21263] 281074 pages reserved
[  335.481932][T21263] 0 pages cma reserved
[  335.500528][T21279] random: crng reseeded on system resumption
[  335.505767][   T39] audit: type=1400 audit(1729073299.150:2080): avc:  denied  { write } for  pid=21278 comm="syz.3.1008" name="snapshot" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  335.538416][   T63] usb usb7-port1: unable to enumerate USB device
[  336.187316][T21318] netlink: 'syz.0.1013': attribute type 10 has an invalid length.
[  336.190768][T21318] bridge0: port 2(bridge_slave_1) entered disabled state
[  336.193149][T21318] bridge0: port 1(bridge_slave_0) entered disabled state
[  336.201932][T21318] bridge0: port 2(bridge_slave_1) entered blocking state
[  336.204251][T21318] bridge0: port 2(bridge_slave_1) entered forwarding state
[  336.206672][T21318] bridge0: port 1(bridge_slave_0) entered blocking state
[  336.209026][T21318] bridge0: port 1(bridge_slave_0) entered forwarding state
[  336.216128][T21318] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  336.220453][T21318] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1013'.
[  336.223339][T21318] bridge_slave_1: left allmulticast mode
[  336.224861][T21318] bridge_slave_1: left promiscuous mode
[  336.226440][T21318] bridge0: port 2(bridge_slave_1) entered disabled state
[  336.229370][T21318] bridge_slave_0: left allmulticast mode
[  336.230862][T21318] bridge_slave_0: left promiscuous mode
[  336.232472][T21318] bridge0: port 1(bridge_slave_0) entered disabled state
[  336.248320][T21318] bond0: (slave bridge0): Releasing backup interface
[  336.544208][   T39] audit: type=1400 audit(1729073300.122:2081): avc:  denied  { read } for  pid=21328 comm="syz.3.1015" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  336.773752][   T39] audit: type=1400 audit(1729073300.338:2082): avc:  denied  { listen } for  pid=21335 comm="syz.3.1017" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  336.779286][   T39] audit: type=1400 audit(1729073300.338:2083): avc:  denied  { nlmsg_read } for  pid=21335 comm="syz.3.1017" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  336.935932][   T39] audit: type=1400 audit(1729073300.487:2084): avc:  denied  { write } for  pid=21357 comm="syz.2.1020" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  336.938221][T21358] Cannot find add_set index 0 as target
[  337.164223][   T39] audit: type=1400 audit(1729073300.702:2085): avc:  denied  { ioctl } for  pid=21365 comm="syz.1.1024" path="/dev/sg0" dev="devtmpfs" ino=705 ioctlcmd=0x2283 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1
[  337.374728][   T39] audit: type=1400 audit(1729073300.833:2086): avc:  denied  { read } for  pid=21376 comm="syz.3.1025" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  337.430121][ T8530] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  337.624753][ T8530] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  337.628748][ T8530] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  337.632299][ T8530] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  337.635294][ T8530] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  337.639006][T21366] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  337.644684][ T8530] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  337.918318][ T8530] usb 6-1: USB disconnect, device number 6
[  338.495574][T21429] FAULT_INJECTION: forcing a failure.
[  338.495574][T21429] name failslab, interval 1, probability 0, space 0, times 0
[  338.500037][T21429] CPU: 3 UID: 0 PID: 21429 Comm: syz.1.1029 Not tainted 6.12.0-rc3-syzkaller-00044-g2f87d0916ce0 #0
[  338.503756][T21429] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  338.507423][T21429] Call Trace:
[  338.508691][T21429]  <TASK>
[  338.509744][T21429]  dump_stack_lvl+0x16c/0x1f0
[  338.511575][T21429]  should_fail_ex+0x497/0x5b0
[  338.513527][T21429]  ? fs_reclaim_acquire+0xae/0x150
[  338.515627][T21429]  should_failslab+0xc2/0x120
[  338.517322][T21429]  kmem_cache_alloc_node_noprof+0x71/0x310
[  338.519373][T21429]  ? __alloc_skb+0x2b1/0x380
[  338.520995][T21429]  __alloc_skb+0x2b1/0x380
[  338.522561][T21429]  ? __pfx___alloc_skb+0x10/0x10
[  338.524352][T21429]  netlink_ack+0x164/0xb90
[  338.525974][T21429]  ? avc_has_perm_noaudit+0x61/0x3a0
[  338.527823][T21429]  netlink_rcv_skb+0x348/0x440
[  338.529359][T21429]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  338.531085][T21429]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  338.532904][T21429]  ? bpf_lsm_capable+0x9/0x10
[  338.534624][T21429]  ? security_capable+0x7e/0x260
[  338.536392][T21429]  ? ns_capable+0xd7/0x110
[  338.537980][T21429]  nfnetlink_rcv+0x1b4/0x430
[  338.539602][T21429]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  338.541432][T21429]  ? netlink_deliver_tap+0x1ae/0xd90
[  338.543506][T21429]  netlink_unicast+0x53c/0x7f0
[  338.545255][T21429]  ? __pfx_netlink_unicast+0x10/0x10
[  338.547215][T21429]  netlink_sendmsg+0x8b8/0xd70
[  338.548999][T21429]  ? __pfx_netlink_sendmsg+0x10/0x10
[  338.550896][T21429]  ? __import_iovec+0x1fd/0x6e0
[  338.552667][T21429]  ____sys_sendmsg+0xaaf/0xc90
[  338.554213][T21429]  ? copy_msghdr_from_user+0x10b/0x160
[  338.556142][T21429]  ? __pfx_____sys_sendmsg+0x10/0x10
[  338.558047][T21429]  ? __pfx___lock_acquire+0x10/0x10
[  338.559892][T21429]  ___sys_sendmsg+0x135/0x1e0
[  338.561602][T21429]  ? __pfx____sys_sendmsg+0x10/0x10
[  338.563500][T21429]  ? lock_acquire+0x2f/0xb0
[  338.565152][T21429]  ? __fget_files+0x40/0x3f0
[  338.566894][T21429]  ? fdget+0x176/0x210
[  338.568353][T21429]  __sys_sendmsg+0x117/0x1f0
[  338.570035][T21429]  ? __pfx___sys_sendmsg+0x10/0x10
[  338.572014][T21429]  ? __fget_files+0x244/0x3f0
[  338.573702][T21429]  do_syscall_64+0xcd/0x250
[  338.575302][T21429]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  338.577389][T21429] RIP: 0033:0x7fbde9f7dff9
[  338.578956][T21429] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  338.585485][T21429] RSP: 002b:00007fbdead58038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  338.588303][T21429] RAX: ffffffffffffffda RBX: 00007fbdea135f80 RCX: 00007fbde9f7dff9
[  338.591119][T21429] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003
[  338.593986][T21429] RBP: 00007fbdead58090 R08: 0000000000000000 R09: 0000000000000000
[  338.596833][T21429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  338.599811][T21429] R13: 0000000000000000 R14: 00007fbdea135f80 R15: 00007ffedd9462e8
[  338.602469][T21429]  </TASK>
[  338.648670][T21432] random: crng reseeded on system resumption
[  338.937657][   T39] audit: type=1400 audit(1729073302.367:2087): avc:  denied  { ioctl } for  pid=21431 comm="syz.1.1030" path="/dev/snapshot" dev="devtmpfs" ino=98 ioctlcmd=0x330f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1
[  339.129901][ T5346] block nbd3: Receive control failed (result -32)
[  339.151365][T21423] block nbd3: shutting down sockets
[  339.374293][   T39] audit: type=1400 audit(1729073302.770:2088): avc:  denied  { connect } for  pid=21448 comm="syz.0.1032" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  339.569932][T21459] FAULT_INJECTION: forcing a failure.
[  339.569932][T21459] name failslab, interval 1, probability 0, space 0, times 0
[  339.573540][T21459] CPU: 3 UID: 0 PID: 21459 Comm: syz.3.1035 Not tainted 6.12.0-rc3-syzkaller-00044-g2f87d0916ce0 #0
[  339.576287][T21459] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  339.579143][T21459] Call Trace:
[  339.580042][T21459]  <TASK>
[  339.580882][T21459]  dump_stack_lvl+0x16c/0x1f0
[  339.582213][T21459]  should_fail_ex+0x497/0x5b0
[  339.583434][T21459]  ? fs_reclaim_acquire+0xae/0x150
[  339.584756][T21459]  should_failslab+0xc2/0x120
[  339.585927][T21459]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  339.587295][T21459]  ? getname_kernel+0x52/0x370
[  339.588574][T21459]  ? do_raw_read_unlock+0x44/0xe0
[  339.590050][T21459]  getname_kernel+0x52/0x370
[  339.591818][T21459]  kern_path+0x1d/0x50
[  339.593146][T21459]  tomoyo_mount_acl+0x62d/0x880
[  339.594714][T21459]  ? hlock_class+0x4e/0x130
[  339.596110][T21459]  ? __lock_acquire+0x163e/0x3ce0
[  339.597432][T21459]  ? __pfx_tomoyo_mount_acl+0x10/0x10
[  339.598828][T21459]  ? __pfx___lock_acquire+0x10/0x10
[  339.600173][T21459]  ? stack_trace_save+0x95/0xd0
[  339.601451][T21459]  ? __pfx_lock_release+0x10/0x10
[  339.602758][T21459]  ? trace_lock_acquire+0x14a/0x1d0
[  339.604099][T21459]  ? tomoyo_mount_permission+0x146/0x410
[  339.605575][T21459]  ? lock_acquire+0x2f/0xb0
[  339.606750][T21459]  ? tomoyo_mount_permission+0x146/0x410
[  339.608196][T21459]  tomoyo_mount_permission+0x16b/0x410
[  339.609611][T21459]  ? tomoyo_mount_permission+0x146/0x410
[  339.611056][T21459]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  339.612641][T21459]  ? get_current_fs_domain+0x188/0x1f0
[  339.614125][T21459]  security_sb_mount+0x9b/0x260
[  339.615435][T21459]  path_mount+0x129/0x1f20
[  339.616644][T21459]  ? kmem_cache_free+0x152/0x4b0
[  339.617956][T21459]  ? __pfx_path_mount+0x10/0x10
[  339.619295][T21459]  ? putname+0x12e/0x170
[  339.620560][T21459]  __x64_sys_mount+0x294/0x320
[  339.621989][T21459]  ? __pfx___x64_sys_mount+0x10/0x10
[  339.623482][T21459]  do_syscall_64+0xcd/0x250
[  339.624744][T21459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  339.626319][T21459] RIP: 0033:0x7f48aa37dff9
[  339.627404][T21459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  339.632341][T21459] RSP: 002b:00007f48ab1d9038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  339.634499][T21459] RAX: ffffffffffffffda RBX: 00007f48aa535f80 RCX: 00007f48aa37dff9
[  339.636592][T21459] RDX: 0000000020000240 RSI: 00000000200001c0 RDI: 0000000020000180
[  339.638810][T21459] RBP: 00007f48ab1d9090 R08: 0000000000000000 R09: 0000000000000000
[  339.641173][T21459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  339.643722][T21459] R13: 0000000000000000 R14: 00007f48aa535f80 R15: 00007ffe33a00798
[  339.645797][T21459]  </TASK>
[  340.373623][T21477] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1039'.
[  340.467456][   T39] audit: type=1400 audit(1729073303.799:2089): avc:  denied  { read } for  pid=21472 comm="syz.1.1039" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  340.629400][T21480] could not allocate digest TFM handle sha1-neon
[  341.271033][   T39] audit: type=1400 audit(1729073304.547:2090): avc:  denied  { ioctl } for  pid=21506 comm="syz.3.1044" path="/dev/ppp" dev="devtmpfs" ino=714 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  341.602810][   T39] audit: type=1400 audit(1729073304.856:2091): avc:  denied  { map } for  pid=21585 comm="syz.1.1054" path="socket:[30510]" dev="sockfs" ino=30510 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=udp_socket permissive=1
[  341.642072][   T35] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  341.804935][   T35] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  341.807863][   T35] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  341.811490][   T35] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  341.814787][   T35] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  341.818758][   T35] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  341.824651][   T35] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  341.828063][   T35] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  341.831136][   T35] usb 5-1: Product: syz
[  341.832676][   T35] usb 5-1: Manufacturer: syz
[  341.838184][   T35] cdc_wdm 5-1:1.0: skipping garbage
[  341.840162][   T35] cdc_wdm 5-1:1.0: skipping garbage
[  341.843160][   T35] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  341.845700][   T35] cdc_wdm 5-1:1.0: Unknown control protocol
[  342.060234][ T4797] kernel write not supported for file /cdc-wdm0 (pid: 4797 comm: kworker/2:2)
[  342.160763][T21512] vcan0 speed is unknown, defaulting to 1000
[  342.164303][T21512] vcan0 speed is unknown, defaulting to 1000
[  342.167627][T21512] vcan0 speed is unknown, defaulting to 1000
[  342.206170][T21512] infiniband syz1: set active
[  342.208873][T21512] infiniband syz1: added vcan0
[  342.208953][   T63] vcan0 speed is unknown, defaulting to 1000
[  342.231976][T21512] RDS/IB: syz1: added
[  342.233820][T21512] smc: adding ib device syz1 with port count 1
[  342.236023][T21512] smc:    ib device syz1 port 1 has pnetid 
[  342.238435][   T63] vcan0 speed is unknown, defaulting to 1000
[  342.241716][T21512] vcan0 speed is unknown, defaulting to 1000
[  342.293044][T21512] vcan0 speed is unknown, defaulting to 1000
[  342.356519][T21512] vcan0 speed is unknown, defaulting to 1000
[  342.426276][T21512] vcan0 speed is unknown, defaulting to 1000
[  342.471994][   T39] audit: type=1400 audit(1729073305.669:2092): avc:  denied  { read } for  pid=21613 comm="syz.3.1051" name="nvram" dev="devtmpfs" ino=631 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  342.479095][   T39] audit: type=1400 audit(1729073305.669:2093): avc:  denied  { open } for  pid=21613 comm="syz.3.1051" path="/dev/nvram" dev="devtmpfs" ino=631 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[  342.495124][T21512] vcan0 speed is unknown, defaulting to 1000
[  342.566271][   T63] usb 5-1: USB disconnect, device number 17
[  345.228646][T21358] 
[  345.229618][T21358] ============================================
[  345.231707][T21358] WARNING: possible recursive locking detected
[  345.233304][T21358] 6.12.0-rc3-syzkaller-00044-g2f87d0916ce0 #0 Not tainted
[  345.235262][   T39] audit: type=1400 audit(1729073308.255:2094): avc:  denied  { write } for  pid=5265 comm="syz-executor" path="pipe:[3832]" dev="pipefs" ino=3832 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  345.235854][T21358] --------------------------------------------
[  345.235862][T21358] syz.2.1020/21358 is trying to acquire lock:
[  345.247509][T21358] ffff888054880078 (&hdev->lock){+.+.}-{3:3}, at: mgmt_set_connectable_complete+0x143/0x330
[  345.250577][T21358] 
[  345.250577][T21358] but task is already holding lock:
[  345.252719][T21358] ffff888054880078 (&hdev->lock){+.+.}-{3:3}, at: hci_dev_close_sync+0x346/0x1110
[  345.256080][T21358] 
[  345.256080][T21358] other info that might help us debug this:
[  345.258957][T21358]  Possible unsafe locking scenario:
[  345.258957][T21358] 
[  345.261752][T21358]        CPU0
[  345.262990][T21358]        ----
[  345.264198][T21358]   lock(&hdev->lock);
[  345.265699][T21358]   lock(&hdev->lock);
[  345.267236][T21358] 
[  345.267236][T21358]  *** DEADLOCK ***
[  345.267236][T21358] 
[  345.270130][T21358]  May be due to missing lock nesting notation
[  345.270130][T21358] 
[  345.272787][T21358] 3 locks held by syz.2.1020/21358:
[  345.274503][T21358]  #0: ffff888054880d80 (&hdev->req_lock){+.+.}-{3:3}, at: hci_dev_do_close+0x26/0x90
[  345.277952][T21358]  #1: ffff888054880078 (&hdev->lock){+.+.}-{3:3}, at: hci_dev_close_sync+0x346/0x1110
[  345.281352][T21358]  #2: ffff888054880690 (&hdev->cmd_sync_work_lock){+.+.}-{3:3}, at: hci_cmd_sync_dequeue+0x50/0x1f0
[  345.284981][T21358] 
[  345.284981][T21358] stack backtrace:
[  345.287120][T21358] CPU: 3 UID: 0 PID: 21358 Comm: syz.2.1020 Not tainted 6.12.0-rc3-syzkaller-00044-g2f87d0916ce0 #0
[  345.290943][T21358] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  345.294863][T21358] Call Trace:
[  345.296144][T21358]  <TASK>
[  345.297131][T21358]  dump_stack_lvl+0x116/0x1f0
[  345.298525][T21358]  print_deadlock_bug+0x2e3/0x410
[  345.300380][T21358]  __lock_acquire+0x2185/0x3ce0
[  345.302174][T21358]  ? __pfx___lock_acquire+0x10/0x10
[  345.304071][T21358]  ? hlock_class+0x4e/0x130
[  345.305291][T21358]  ? __lock_acquire+0x163e/0x3ce0
[  345.307119][T21358]  lock_acquire.part.0+0x11b/0x380
[  345.308980][T21358]  ? mgmt_set_connectable_complete+0x143/0x330
[  345.311232][T21358]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  345.313294][T21358]  ? rcu_is_watching+0x12/0xc0
[  345.314945][T21358]  ? trace_lock_acquire+0x14a/0x1d0
[  345.316831][T21358]  ? mgmt_set_connectable_complete+0x143/0x330
[  345.319016][T21358]  ? lock_acquire+0x2f/0xb0
[  345.320623][T21358]  ? mgmt_set_connectable_complete+0x143/0x330
[  345.322672][T21358]  __mutex_lock+0x175/0x9c0
[  345.323854][T21358]  ? mgmt_set_connectable_complete+0x143/0x330
[  345.326031][T21358]  ? mgmt_set_connectable_complete+0x143/0x330
[  345.328268][T21358]  ? __pfx___mutex_trylock_common+0x10/0x10
[  345.330426][T21358]  ? __pfx___mutex_lock+0x10/0x10
[  345.331814][T21358]  ? __mutex_lock+0x1a6/0x9c0
[  345.333406][T21358]  ? mgmt_set_connectable_complete+0x143/0x330
[  345.335645][T21358]  mgmt_set_connectable_complete+0x143/0x330
[  345.337839][T21358]  ? __pfx_mgmt_set_connectable_complete+0x10/0x10
[  345.340203][T21358]  ? __pfx_mgmt_set_connectable_complete+0x10/0x10
[  345.342111][T21358]  _hci_cmd_sync_cancel_entry.constprop.0+0x6c/0x1d0
[  345.343834][T21358]  hci_cmd_sync_dequeue+0x178/0x1f0
[  345.345189][T21358]  cmd_complete_rsp+0x46/0x1e0
[  345.346454][T21358]  mgmt_pending_foreach+0xdf/0x140
[  345.347785][T21358]  ? __pfx_cmd_complete_rsp+0x10/0x10
[  345.349177][T21358]  __mgmt_power_off+0x12a/0x2c0
[  345.350459][T21358]  ? __pfx___mgmt_power_off+0x10/0x10
[  345.351852][T21358]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  345.353440][T21358]  ? lockdep_hardirqs_on+0x7c/0x110
[  345.354797][T21358]  ? 0xffffffff81000000
[  345.355886][T21358]  hci_dev_close_sync+0xc33/0x1110
[  345.357227][T21358]  ? __pfx_hci_dev_close_sync+0x10/0x10
[  345.358684][T21358]  hci_dev_do_close+0x2e/0x90
[  345.359920][T21358]  hci_dev_close+0x183/0x1e0
[  345.361129][T21358]  hci_sock_ioctl+0x28c/0x880
[  345.362363][T21358]  ? __pfx_hci_sock_ioctl+0x10/0x10
[  345.363721][T21358]  sock_do_ioctl+0x116/0x280
[  345.364939][T21358]  ? __pfx_sock_do_ioctl+0x10/0x10
[  345.366282][T21358]  ? ioctl_has_perm.constprop.0.isra.0+0x2ea/0x460
[  345.367966][T21358]  ? ioctl_has_perm.constprop.0.isra.0+0x2f3/0x460
[  345.369658][T21358]  ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[  345.371426][T21358]  sock_ioctl+0x228/0x6c0
[  345.372562][T21358]  ? __pfx_sock_ioctl+0x10/0x10
[  345.373858][T21358]  ? selinux_file_ioctl+0x180/0x270
[  345.375217][T21358]  ? selinux_file_ioctl+0xb4/0x270
[  345.376567][T21358]  ? __pfx_sock_ioctl+0x10/0x10
[  345.377847][T21358]  __x64_sys_ioctl+0x18f/0x220
[  345.379102][T21358]  do_syscall_64+0xcd/0x250
[  345.380293][T21358]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  345.381843][T21358] RIP: 0033:0x7f449557dff9
[  345.383009][T21358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  345.387974][T21358] RSP: 002b:00007f4496403038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  345.390131][T21358] RAX: ffffffffffffffda RBX: 00007f4495735f80 RCX: 00007f449557dff9
[  345.392170][T21358] RDX: 0000000000000000 RSI: 00000000400448ca RDI: 000000000000000f
[  345.394232][T21358] RBP: 00007f44955f0296 R08: 0000000000000000 R09: 0000000000000000
[  345.396291][T21358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  345.398343][T21358] R13: 0000000000000000 R14: 00007f4495735f80 R15: 00007ffdfd59bf28
[  345.400398][T21358]  </TASK>

VM DIAGNOSIS:
10:08:46  Registers:
info registers vcpu 0

CPU#0
RAX=0000000080000000 RBX=ffffffff9a7e6503 RCX=ffffffff8b13fecd RDX=ffff88801f2da440
RSI=0000000000000000 RDI=0000000000000005 RBP=ffff88805a7ab0e8 RSP=ffffc90000977848
R8 =0000000000000005 R9 =0000000000000000 R10=00000000ffffff27 R11=0000000000000001
R12=0000000000000073 R13=ffffffff9a7e650b R14=ffff88805a7ab010 R15=00000000000000d8
RIP=ffffffff818d82b8 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f01d2667d60 CR3=000000000df7c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002020004 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f01d1b0b6a3 00007f01d1b0b6a3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffe212c140 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005555889e6498
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000555588a0453e 0000555588a03d60
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 81a2100000100003 ffffffff04010800 0801359c0c100013 80040100000a0806
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0108100000043c10 0006010280000800 00030e1000018004 0100000a08060601
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 50bc000001000000 050e080180032081 a2100000100003ff ffffff0401080008
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 01359c0c10001380 040100000a080606 01018a0604001388 0307fffe04001384
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 033e040013800302 10000610003e1000 060a4db203ffffff ff040880a2a39608
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000002051c04 RBX=0000000000000001 RCX=ffffffff8b2250d9 RDX=ffffed100d4e7026
RSI=ffffffff8bd1a780 RDI=ffffffff81647ecc RBP=ffffed1003b53910 RSP=ffffc90000187e08
R8 =0000000000000000 R9 =ffffed100d4e7025 R10=ffff88806a73812b R11=0000000000000001
R12=0000000000000001 R13=ffff88801da9c880 R14=ffffffff905f46c8 R15=0000000000000000
RIP=ffffffff8b2264bf RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00005638edb358e8 CR3=0000000024a32000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000208001 Opmask01=0000000000000000 Opmask02=0000000000000fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff81583aeb ffffffff81583a37
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff81583aeb ffffffff81583a37
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 ffffffff81583a37
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f98095f1133
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f98095f1140
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f98095f113a
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f98095f114e
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f98095f11d4
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f98095f12b2
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff81583aeb ffffffff81583a7f ffffffff81583a37 ffffffff81334b05
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff8209939a ffffffff82099387 ffffffff00040008 0000000f0010000c
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff82098f9f ffffffff82098f6c ffffffff82098f4f ffffffff82098dd1
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000050
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000946c6c RBX=0000000000000002 RCX=ffffffff8b2250d9 RDX=ffffed100d507026
RSI=ffffffff8bd1a780 RDI=ffffffff81647ecc RBP=ffffed1003b56000 RSP=ffffc90000197e08
R8 =0000000000000000 R9 =ffffed100d507025 R10=ffff88806a83812b R11=0000000000000001
R12=0000000000000002 R13=ffff88801dab0000 R14=ffffffff905f46c8 R15=0000000000000000
RIP=ffffffff8b2264bf RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a800000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000002fde2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001000000 Opmask01=0000000001000001 Opmask02=000000007ffbffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffe94af4180 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f98095f1133
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f98095f1140
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f98095f113a
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f98095f114e
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f98095f11d4
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f98095f12b2
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000050
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000050
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000013396 RBX=000000000000002b RCX=ffffc9000c202000 RDX=0000000000040000
RSI=ffffffff816daba6 RDI=0000000000000001 RBP=1ffff920045cae6b RSP=ffffc90022e57348
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=722d302e32312e36
R12=0000000000000001 R13=0000000000000000 R14=ffff88801f2da440 R15=ffffc90022e57430
RIP=ffffffff816daba8 RFL=00000087 [--S--PC] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f44964036c0 ffffffff 00c00000
GS =0000 ffff88806a900000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c2ca050 CR3=000000002f106000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000208001 Opmask01=0000000000000000 Opmask02=0000000000000fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff8132bf8b ffffffff8132bf8b
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff8132bf8b ffffffff8132bf8b
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 ffffffff8132bf8b
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbde9ff1133
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbde9ff1140
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbde9ff113a
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbde9ff114e
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbde9ff11d4
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbde9ff12b2
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffff8132bf8b ffffffff8132bf8b ffffffff8132bf8b ffffffff8100a2e8
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbdeac6d100 00007fbdea10b440 00007fbd00040008 0000000f0010000c
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbdea10b498 00007fbdea10b490 00007fbdea10b488 00007fbdea10b480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000000 00000000000000a0
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000